← volver
CVE-2025-48500

BIG-IP APM VPN web client for macOS vulnerability

CVSS 7 HIGHEPSS 0.1%CWE-353
A missing file integrity check vulnerability exists on MacOS F5 VPN browser client installer that may allow a local, authenticated attacker with access to the local file system to replace it with a malicious package installer.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
F5 · BIG-IPF5 · BIG-IP Edge Client

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://my.f5.com/manage/s/article/K000151782