CNNVD-202510-2163 Information

CNNVD ID

CNNVD-202510-2163

Related CVE

CVE-2025-47148

• CNNVD Published: 2025-10-15

Description (Chinese)

F5 BIG-IP是美国F5公司的一款集成了网络流量管理、应用程序安全管理、负载均衡等功能的应用交付平台。 F5 BIG-IP存在安全漏洞，该漏洞源于同时配置为SAML服务提供商和身份提供商时，未公开请求可能导致内存资源利用率增加。

Description (English)

F5 BIG-IP is an application delivery platform for network traffic management, application security management, load balance, and so on. F5 BIG-IP has a security gap, which stems from the fact that failure to make a public request may lead to an increase in the utilization of memory resources when deployed as both SAML service providers and identity providers.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

F5

Published

2025-10-15

Last Modified

2026-02-24

References

https://my.f5.com/manage/s/article/K000148816 https://vigilance.fr/vulnerability/BIG-IP-AFM-SSL-Orchestrator-memory-leak-via-SAML-SLO-48482

Patch

https://my.f5.com/manage/s/article/K000148816