When BIG-IP Advanced WAF/ASM Behavioral DoS (BADoS) TLS Signatures feature is configured, undisclosed traffic can case an increase in memory resource utilization.




Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 08 Aug 2025 17:15:00 +0000

Type Values Removed Values Added
First Time appeared F5 big-ip Application Security Manager
CPEs cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
Vendors & Products F5 big-ip Application Security Manager

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00098}

epss

{'score': 0.00124}


Wed, 05 Feb 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 05 Feb 2025 17:45:00 +0000

Type Values Removed Values Added
Description When BIG-IP Advanced WAF/ASM Behavioral DoS (BADoS) TLS Signatures feature is configured, undisclosed traffic can case an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Title BIG-IP Advanced WAF/ASM BADoS vulnerability
Weaknesses CWE-787
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}

cvssV4_0

{'score': 8.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published:

Updated: 2025-02-05T18:16:56.908Z

Reserved: 2025-01-22T00:16:50.307Z

Link: CVE-2025-24326

cve-icon Vulnrichment

Updated: 2025-02-05T18:16:50.084Z

cve-icon NVD

Status : Analyzed

Published: 2025-02-05T18:15:35.420

Modified: 2025-08-08T17:05:04.937

Link: CVE-2025-24326

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2025-07-12T15:26:16Z