What is CVE-2025-43878?

CVE-2025-43878 is a medium-severity vulnerability in F5 F5os - Appliance, classified under CWE-149. CVSS score: 6.0/10. Published 2025-05-07.

How severe is CVE-2025-43878?

Medium severity. CVSS v3 base score is 6.0 out of 10.

Vulnerability in F5 F5os - Appliance

CVE-2025-43878

When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be able to bypass Appliance mode restrictions utilizing system diagnostics tcpdump command utility on a F5OS-C/A system…

EPSS: 0.001 (33.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.0 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N.

Affected products

F5 F5os - Appliance — versions 1.5.1
F5 F5os - Chassis — versions 1.6.0

Weakness classification (CWE)

CWE-149
CWE-1286

References

my.f5.com/manage/s/article/K000139502 (vendor-advisory)

Frequently asked questions

What is CVE-2025-43878?: CVE-2025-43878 is a medium-severity vulnerability in F5 F5os - Appliance, classified under CWE-149. CVSS score: 6.0/10. Published 2025-05-07.
How severe is CVE-2025-43878?: Medium severity. CVSS v3 base score is 6.0 out of 10.