CVE-2025-48008 in F5 BIG-IPinfo

Summary

When a TCP profile with Multipath TCP (MPTCP) enabled is configured on a virtual server, undisclosed traffic along with conditions beyond the attacker's control can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Reservation

10/04/2025

Disclosure

10/15/2025

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
328680	F5 BIG-IP/BIG-IP Next SPK/BIG-IP Next CNF MPTCP use after free	416	Not defined	Official fix	CVE-2025-48008

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Want to know what is going to be exploited?

We predict KEV entries!