Vulnerability Details CVE-2025-22891
When BIG-IP PEM Control Plane listener Virtual Server is configured with Diameter Endpoint profile, undisclosed traffic can cause the Virtual Server to stop processing new client connections and an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 37.2%
CVSS Severity
CVSS v3 Score 7.5
Products affected by CVE-2025-22891
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.0.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.0.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.0.3
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.0.4
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.0.5
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.10
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.2.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.3
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.4
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.4.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.5
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.5.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.6
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.7
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.8
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.8.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.8.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.9
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.9.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.2.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.3
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.3.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.3.3
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.3.4
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.3.5
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.4
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.4.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:17.1.0
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:17.1.0.1
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:17.1.0.2
-
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:17.1.1