Forum Discussion

wgranada's avatar
wgranada
Icon for Altostratus rankAltostratus
May 12, 2025

libxml2 and CVE-2024-25062

Good day All,   Apologies for the silly question but I am new to F5, when I was running iHealth on my BigIP running V17.1.2.1 it flagged the above CVE-2024-25062.  Is this for the version 17.1.0 - ...
xml
Aswin_mk's avatar
Aswin_mk
Icon for MVP rankMVP
May 13, 2025

Hi,

 

It will affect on the components like "XML content-based routing, wap monitor, external monitor, AAM image optimization, ASM XML profiles". but the version V17.1.2.1 have so many another known vulnerabilities, if needed you can test and upgrade to 17.5

 

F5 Networks: CVE-2021-31566: K000140963: libarchive vulnerability CVE-2021-31566

F5 Networks: CVE-2022-43680: K000139525: Libexpat vulnerability CVE-2022-43680

F5 Networks: CVE-2023-52881: K000148479: Linux kernel vulnerability CVE-2023-52881

F5 Networks: CVE-2024-38477: K000140784: Apache HTTPD vulnerability CVE-2024-38477