CVE-2025-53868 HIGH

CVE-2025-53868: BIG-IP SCP and SFTP vulnerability

Vendor F5

Product BIG-IP

Weakness CWE-78

Published October 15, 2025

Last update March 4, 2026

View on NVD All CVEs

CVSS base score

8.7/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N

What the vulnerability does

01Description

When running in Appliance mode, a highly privileged authenticated attacker with access to SCP and SFTP may be able to bypass Appliance mode restrictions using undisclosed commands. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Key dates

02Disclosure timeline

October 15, 2025 CVE published

March 4, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-53868

Related vulnerabilities

Identifiers

CVE CVE-2025-53868

CWE CWE-78

CVSS 8.7 / HIGH

Affected versions

Vendor F5

Product BIG-IP

Affected ≥ 17.5.0 and < 17.5.1

Vendor F5

Product BIG-IP

Affected ≥ 17.1.0 and < 17.1.3.1

Vendor F5

Product BIG-IP

Affected ≥ 16.1.0 and < 16.1.6.1

Vendor F5

Product BIG-IP

Affected ≥ 15.1.0 and < 15.1.10.8

CVE-2025-53868: BIG-IP SCP and SFTP vulnerability

01Description

02Disclosure timeline

03References

04Related CVE