CVE-2025-36546 – F5OS SSH Key-Based Authentication Privilege Escalation

May 7, 2025

CVE ID : CVE-2025-36546

Published : May 7, 2025, 10:15 p.m. | 1 hour, 21 minutes ago

Description : On an F5OS system, if the root user had previously configured the system to allow login via SSH key-based authentication, and then enabled Appliance Mode; access via SSH key-based authentication is still allowed. For an attacker to exploit this vulnerability they must obtain the root user’s SSH private key.

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Severity: 8.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-41414 – F5 BIG-IP HTTP/2 Profile Denial of Service

Next Article CVE-2025-36525 – BIG-IP APM PingAccess Profile Request Termination Vulnerability

The Psychology Of Color In UX Design And Digital Products

This week in AI dev tools: Claude Sonnet 4’s larger context window, ChatGPT updates, and more (August 15, 2025)

Sentry launches MCP monitoring tool

10 Benefits of Hiring a React.js Development Company (2025–2026 Edition)

I flew Insta360’s new ‘Antigravity’ drone around Los Angeles, and it was impossible to miss a shot

The $100 open-ear headphones that made me forget about my Shokz

5 quick and simple ways to greatly improve the quality of your headphones

Installing a UPS battery backup saved my work PC – here’s the full story

Maintaining Data Consistency with Laravel Database Transactions

Maintaining Data Consistency with Laravel Database Transactions

Building a Multi-Step Form With Laravel, Livewire, and MongoDB

Inertia Releases a New Form Component

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Google’s Gemini AI had a full-on meltdown while coding — calling itself a fool, a disgrace, and begging for freedom from its own loop

Take-Two hints at $100 price tag for Grand Theft Auto VI — will it deliver on value?

ChatGPT Go offers GPT-5, image creation, and longer memory — all for $5 (if you’re lucky enough to live where it’s available)

CVE-2025-36546 – F5OS SSH Key-Based Authentication Privilege Escalation

Cisco Warns of CVSS 10.0 FMC RADIUS Flaw Allowing Remote Code Execution

Zero Trust + AI: Privacy in the Age of Agentic AI

Windows 11 KB5063060 issues, install fails on Windows 11 24H2 for some users

CVE-2025-5388 – JeeWMS SQL Injection Vulnerability

CVE-2025-5065 – Google Chrome FileSystemAccess API UI Spoofing Vulnerability

The tiniest and mightiest gaming mouse to grace my desk is just a little bit awesome

CVE-2025-27581 – NIH BRICS Unauthenticated Access to InET Module

Rilasciata KDE Gear 25.04: La Collezione di Applicazioni KDE si Rinnova con Tante Novità

New TETRA Radio Encryption Flaws Expose Law Enforcement Communications

CVE-2025-5850 – Tenda AC15 HTTP POST Request Handler Buffer Overflow Vulnerability

CVE-2025-36546 – F5OS SSH Key-Based Authentication Privilege Escalation

Related Posts