Known vulnerabilities in F5 Networks BIG-IP Next SPK 1.7.3

Known vulnerabilities in F5 Networks BIG-IP Next SPK 1.7.3

Vendor: F5 Networks

Website: https://f5.com/

Total Security Bulletins: 12

Security bulletins (12)

Secuity bulletin	Severity	Status	Published
SB2026011981: Remote code execution in BIG-IP Next dSSM component	Medium	Not patched Public exploit	19.01.2026
SB2025081451: HTTP/2 Made You Reset Attack in F5 BIG-IP Next SPK/CNF	Medium	Not patched	14.08.2025
SB2025071778: Privilege escalation in shadow-utils component used by BIG-IP Next SPK/CNF	Medium	Not patched	17.07.2025
SB2025071775: Improper input validation in Go used by fsm and cert-manager in BIG-IP Next SPK/CNF	Medium	Not patched	17.07.2025
SB2025062445: Race condition in BIG-IP Next OTEL collectors	Low	Not patched	24.06.2025
SB2025050784: Remote denial of service in BIG-IP Next SPK/CNF TMM module	Medium	Patched	07.05.2025
SB2025050780: Remote denial of service in F5 BIG-IP HTTP/2 profile	Medium	Patched	07.05.2025
SB2025050776: Remote denial of service in F5 BIG-IP SCTP profile	Medium	Patched	07.05.2025
SB2025050755: Remote denial of service in F5 BIG-IP TMM	Medium	Patched	07.05.2025
SB20250227213: Remote denial of service in BIG-IP Next SPK/CNF OpenSSL component	Medium	Not patched	27.02.2025
SB20250227205: OS command injection in F5 BIG-IP Next CNF Python component	Low	Not patched	27.02.2025
SB2025020740: Denial of service in BIG-IP SIP ALG	Medium	Patched	07.02.2025