- Description
- When SIP Session and Router ALG profiles are configured on a Message Routing type virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
- Source
- f5sirt@f5.com
- NVD status
- Analyzed
- Products
- big-ip_next_service_proxy_for_kubernetes, big-ip_access_policy_manager, big-ip_advanced_firewall_manager, big-ip_analytics, big-ip_application_acceleration_manager, big-ip_application_security_manager, big-ip_domain_name_system, big-ip_fraud_protection_service, big-ip_global_traffic_manager, big-ip_link_controller, big-ip_local_traffic_manager, big-ip_policy_enforcement_manager
CVSS 4.0
- Type
- Secondary
- Base score
- 8.7
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Secondary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
- f5sirt@f5.com
- CWE-404
- Hype score
- Not currently trending
[CVE-2025-22846: HIGH] Configuring SIP Session and Router ALG profiles on a virtual server can lead to TMM termination due to undisclosed traffic. Note: EoTS software versions are not evaluated.#cybersecurity,#vulnerability https://t.co/6l4624bhji https://t.co/IPz9Z8yGBr
@CveFindCom
5 Feb 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-22846 When SIP Session and Router ALG profiles are configured on a Message Routing type virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TM… https://t.co/AVvMNav4Lo
@CVEnew
5 Feb 2025
167 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0926752E-C707-4A06-A91B-770493F2E581",
"versionEndExcluding": "1.7.7",
"versionStartIncluding": "1.7.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:1.8.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3FD474CD-702B-4A38-9DFA-7077877A1B45"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:1.8.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E2BD5D31-0589-4DE7-8360-5CDC08AA7DB6"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:1.8.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "108774A7-4D1C-4FC7-AB08-EF86F970AFDB"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:1.9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7325A44F-8914-4FEB-A652-5E2F6DC736C4"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "451BAC8A-6354-477B-A85A-7FD9082D2631",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A235DA1-7C50-49A5-A874-7FA00EA8B7D9",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0714D37A-AC59-4482-9BD7-CB676A1959F3",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BAF1349A-E4AF-4917-9B8F-4AA7D6A50450",
"versionEndExcluding": "15.1.10.6.0.11.6-ENG",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B8910E0-3AC4-4FEE-8BA0-8E592F546B4C",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4874706-6BD1-4C18-86CB-C3B76B0879FF",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C283359B-77F0-415B-9D04-8AF47D92DB20",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AF371739-2974-49F4-95BE-109ED6007A9F",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CAC60D99-A5D4-475A-BCE8-88A17B4885C2",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0D4F066-402E-4700-ADCB-7685F855C0D2",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "87E768C7-28EC-4999-8822-C8CE7EEE2270",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2D75CF39-46A1-4F08-A70C-C3EAAB751C56",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B472D271-0FEE-4CFF-B571-FE8BF9F5D827",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9697B71-CD20-42EF-8E6C-8C11FC84BE4C",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "993D544C-2F40-45E2-AD10-D4D7DFA9ADC0",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5B06E492-858A-4C29-8E2E-DC951A8A39BB",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A72B6A1F-492B-48D7-8F90-717CFAE9E0A0",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "62F12552-6772-4694-B5F7-431DFF7CAA6F",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B81AE198-5BFE-4C0C-8AB1-1DC3F680DE2F",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6AF9FDCB-A975-4A4E-8F58-C1E830E6836D",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "03DC961D-DB46-4C7C-8879-93A076910BD4",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CD3FD091-B805-40CE-92BA-B3C6EE4BA8DF",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "14043026-1D70-46F9-BBA7-93460ACCB76A",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C6A98FC-AFEA-48CD-BD05-4F501BB21AA6",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C190DF1-E99A-477E-9A31-8988A5679E37",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8C260295-74F2-402C-B25E-3EDADF221A29",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C2AD36E2-889D-4E42-B617-F8F59F2ACC64",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E44D4EBE-FC8C-4997-8B18-1B100E2AEEB8",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD9977B4-1808-4706-A98A-6BDF124773B0",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D2D701A7-F1AE-4772-889A-441C3389FB01",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E32A1992-3C15-4C3B-8C51-706614271FDB",
"versionEndExcluding": "15.1.10.6.0.11.6",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0286214-6B81-45FB-8113-B5A9A1B4BEC7",
"versionEndExcluding": "16.1.5",
"versionStartIncluding": "16.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9FB55C74-396E-4AA0-8038-22C14BE0E91B",
"versionEndExcluding": "17.1.2",
"versionStartIncluding": "17.1.0"
}
],
"operator": "OR"
}
]
}
]