CVE-2025-58071: 
F5 BIG-IP Virtual Edition vulnerability analysis and mitigation

CVE-2025-58071 is a vulnerability affecting F5's BIG-IP system where undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate when IPsec is configured. The vulnerability was disclosed on October 15, 2025, and affects BIG-IP systems (F5 NVD).

The vulnerability has been assigned a CVSS v4.0 base score of 8.7 HIGH (CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N) and a CVSS v3.1 base score of 7.5 HIGH (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). The vulnerability is associated with CWE-457 (Use of Uninitialized Variable) (F5 NVD).

When exploited, this vulnerability can cause the Traffic Management Microkernel (TMM) to terminate, potentially leading to service disruption on affected BIG-IP systems where IPsec is configured (F5 NVD).

F5 has released patches as part of their October 2025 Quarterly Security Notification. Organizations are strongly advised to update their BIG-IP software as soon as possible. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has also released emergency directive (ED) 26-01 recommending immediate patching of affected systems (Tenable Blog).

The vulnerability was disclosed alongside a broader security incident at F5, where a nation-state threat actor gained access to certain systems within their environment. While F5 states they have no knowledge of undisclosed critical vulnerabilities being actively exploited, the security community is treating this with high priority given the potential impact (Tenable Blog).