F5 Product Security Update Advisory (CVE-2025-20029)

Mar 04 2025

Overview

We have released security updates to fix vulnerabilities in F5 products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-20029

BIG-IP Versions: 17.1.0 through 17.1.2 (inclusive)
BIG-IP Versions: 16.1.0 through 16.1.5 (inclusive)
BIG-IP Versions: 15.1.0 through 15.1.10 (inclusive)

Resolved Vulnerabilities

Instruction Injection Vulnerability (CVE-2025-20029)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-20029

BIG-IP Version: 17.1.2.1
BIG-IP Version: 16.1.5.2
BIG-IP version: 15.1.10.6

References

[1] K000148587: BIG-IP iControl REST and tmsh vulnerability CVE-2025-20029
https://my.f5.com/manage/s/article/K000148587

F5 Product Security Update Advisory (CVE-2025-20029)

Cisco Family February 2025 First Round Security Update Advisory

IBM Product Security Update Advisory

Tags:

Cisco Family February 2025 First Round Security Update Advisory

IBM Product Security Update Advisory