Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

F5 BIG-IP and related products October 2025 security updates (44 vulnerabilities)

Security Patch Release
First reported
Last updated
Happening score
H score 27
1 unique sources, 2 articles

Summary

Hide ▲

F5 released October 2025 security updates for BIG-IP and related products, patching 44 vulnerabilities and urging customers to update immediately. The bundle includes flaws stolen in a breach detected on August 9, 2025, but F5 says it has no evidence of active exploitation of the undisclosed issues. The update set covers F5OS, BIG-IP Next for Kubernetes, BIG-IQ, and APM clients.

Related Happenings

F5 BIG-IP APM active exploitation wave (CVE-2025-53521)

Exploitation Wave
First: 02.04.2026 11:25 Last: 02.04.2026 11:25 Sources 1

About this happening: As of **2026-04-02**, ongoing attacks are exploiting **CVE-2025-53521** against **F5 BIG-IP APM** systems, leaving more than **14,000** exposed online and at risk of remote code e...

Open Happening

CISA KEV patch directive for CVE-2025-53521

Advisory/Mitigation
First: 30.03.2026 10:07 Last: 30.03.2026 10:07 Sources 1

About this happening: CISA added **CVE-2025-53521** to its **KEV catalog** and told **federal agencies** to patch the F5 BIG-IP flaw within **three days**. The directive is urgent because the bug is be...

Open Happening

Patch Tuesday multi-vendor security patch release (multiple vulnerabilities)

Security Patch Release
First: 11.02.2026 15:28 Last: 11.02.2026 15:28 Sources 1

About this happening: On **Patch Tuesday**, **software vendors** released security updates across **OS, cloud, network, and application platforms**, closing multiple flaws in widely used products and s...

Open Happening

CISA adds five KEV flaws and sets FCEB remediation deadline

Public Sector Action
First: 20.10.2025 22:00 Last: 20.10.2025 22:00 Sources 1

About this happening: **CISA** added **CVE-2025-61884** in **Oracle E-Business Suite** to its **Known Exploited Vulnerabilities (KEV) Catalog** after confirming it is being **actively exploited**. The...

Open Happening

F5 BIG-IP and related products Quarterly Security Notification (multiple vulnerabilities)

Security Patch Release
First: 16.10.2025 11:39 Last: 16.10.2025 11:39 Sources 1

About this happening: **F5**'s **Quarterly Security Notification** told customers to apply security updates for **BIG-IP**, **F5OS**, **BIG-IP Next for Kubernetes**, **BIG-IQ** and **APM clients**, mak...

Open Happening

Timeline

  1. 15.10.2025 21:01 1 articles · 7mo ago

    F5 breach detected and BIG-IP source code stolen

    Initial Disclosure

    A breach detected on August 9, 2025 exposed F5 systems, and state hackers stole source code and information on undisclosed BIG-IP security flaws.

    Show sources
    Open in new tab
  2. 15.10.2025 21:01 3 articles · 7mo ago

    F5 releases October 2025 security updates and CISA orders federal patching

    Mitigation Patch Update

    F5 issued updates for 44 vulnerabilities, including flaws stolen in the breach, across BIG-IP, F5OS, BIG-IP Next for Kubernetes, BIG-IQ, and APM clients, urged immediate customer updates, and CISA issued ED 26-01 directing Federal Civilian Executive Branch agencies to apply the latest F5 updates by October 31, 2025 and disconnect or decommission public-facing end-of-support devices.

    Show sources
    Open in new tab