What is CVE-2025-53856?

CVE-2025-53856 is a high-severity vulnerability in F5 Big-ip, classified under CWE-705. CVSS score: 7.5/10. Published 2025-10-15.

How severe is CVE-2025-53856?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in F5 Big-ip

CVE-2025-53856

When a virtual server, network address translation (NAT) object, or secure network address translation (SNAT) object uses the embedded Packet Velocity Acceleration (ePVA) feature, undisclosed traffic can cause the Traffic Management Microk…

EPSS: 0.000 (11.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

F5 Big-ip — versions 17.5.0, 17.1.0, 16.1.0

Weakness classification (CWE)

CWE-705

References

my.f5.com/manage/s/article/K000156707 (vendor-advisory)

Frequently asked questions

What is CVE-2025-53856?: CVE-2025-53856 is a high-severity vulnerability in F5 Big-ip, classified under CWE-705. CVSS score: 7.5/10. Published 2025-10-15.
How severe is CVE-2025-53856?: High severity. CVSS v3 base score is 7.5 out of 10.