Timeline

F5

US network security vendor; BIG-IP APM CVE-2025-53521 reclassified from medium DoS to CVSS 9.8 unauthenticated RCE in March 2026 with 14,000+ exposed instances.

1 events

FiltersHide mentions

#117 Apr

Reclassified CVE-2025-53521 from medium DoS to unauthenticated RCE CVSS 9.8 and confirmed memory-only web shell deployment

Cybersecurity: Threats and Defences: F5 reclassifies DoS bug to 9.8 RCE

← Back to F5