CVE-2025-35995 – BIG-IP PEM Denial of Service Vulnerability

May 7, 2025

CVE ID : CVE-2025-35995

Published : May 7, 2025, 10:15 p.m. | 1 hour, 21 minutes ago

Description : When a BIG-IP PEM system is licensed with URL categorization, and the URL categorization policy or an iRule with the urlcat command is enabled on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-36504 – BIG-IP HTTP/2 httprouter Profile Memory Consumption Vulnerability

Next Article CVE-2025-31644 – F5 BIG-IP Command Injection Vulnerability

Highlights

CVE-2025-5346 – Bluebird Devices File Traversal Vulnerability in BootReceiver

July 17, 2025

CVE ID : CVE-2025-5346

Published : July 17, 2025, 1:15 p.m. | 1 hour, 16 minutes ago

Description : Bluebird devices contain a pre-loaded barcode scanner application. This application exposes an unsecured broadcast receiver “kr.co.bluebird.android.bbsettings.BootReceiver”. A local attacker can call the receiver to overwrite file containing “.json” keyword with default barcode config file. It is possible to overwrite file in any location due to lack of protection against path traversal in name of the file.

This issue affects all versions before 1.3.3.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: A Unique Way to Primary Key

BrowserStack launches Figma plugin for detecting accessibility issues in design phase

Parasoft brings agentic AI to service virtualization in latest release

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

I’m a wearables editor and here are the 7 Pixel Watch 4 rumors I’m most curious about

8 ways I quickly leveled up my Linux skills – and you can too

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

Execute Ping Commands and Get Back Structured Data in PHP

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

A Tomb Raider composer has been jailed — His legacy overshadowed by $75k+ in loan fraud

“I don’t think I changed his mind” — NVIDIA CEO comments on H20 AI GPU sales resuming in China following a meeting with President Trump

Galaxy Z Fold 7 review: Six years later — Samsung finally cracks the foldable code

CVE-2025-35995 – BIG-IP PEM Denial of Service Vulnerability

CVE-2025-44658 – Netgear RAX30 PHP-FPM Misconfigured Extension Bypass Vulnerability

CVE-2025-7393 – Drupal Mail Login Authentication Bypass

Your Garmin watch just got a major upgrade that makes traveling so much easier

I adore the world of South of Midnight, and I hope others explore this dark folktale from Xbox

Fast Flux is the New Cyber Weapon—And It’s Hard to Stop, Warns CISA

CVE-2025-53158 – Apache HTTP Server Unvalidated User Input

CVE-2025-5346 – Bluebird Devices File Traversal Vulnerability in BootReceiver

Microsoft Expands AI Office in London, “We’re Hiring,” CEO Announces

CVE-2025-5745 – IBM Power10 GNU C Library Unpredictable String Comparison Vulnerability

The Outer Worlds 2: Xbox Game Pass, gameplay, and everything you need to know

CVE-2025-35995 – BIG-IP PEM Denial of Service Vulnerability

Related Posts