CVE-2025-31644: 
F5 BIG-IP Virtual Edition (tier - best) vulnerability analysis and mitigation

When running in Appliance mode, a command injection vulnerability exists in an undisclosed iControl REST and BIG-IP TMOS Shell (tmsh) command which may allow an authenticated attacker with administrator role privileges to execute arbitrary system commands. A successful exploit can allow the attacker to cross a security boundary (NVD).

The vulnerability is classified as a command injection vulnerability (CWE-77) affecting BIG-IP TMOS Shell and iControl REST interfaces when running in Appliance mode. The vulnerability has received a CVSS v4.0 Base Score of 8.5 (HIGH) with vector string CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:N/SC:L/SI:L/SA:L and CVSS v3.1 Base Score of 8.7 (HIGH) with vector string CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N (NVD).

A successful exploitation of this vulnerability could allow an authenticated attacker with administrator privileges to execute arbitrary system commands and cross security boundaries. This could potentially lead to system compromise and unauthorized access to sensitive resources (NVD).

Software versions which have reached End of Technical Support (EoTS) are not evaluated. Users should ensure their systems are updated to the latest supported version and follow security best practices (NVD).