F5 published product advisories covering two separate upstream security flaws affecting widely used core components: Linux kernel vulnerability CVE-2025-40154 and OpenSSL vulnerability CVE-2025-68160. The notices indicate vendor tracking and assessment activity for vulnerabilities in foundational software commonly embedded in network, application delivery, and security appliances.
The advisories were released through F5's product advisory channel under knowledge base articles K000160420 and K000160552. While the referenced notices provide limited public synopsis text, the combined updates show F5 alerting customers to potential product impact from both an operating system kernel issue and a cryptographic library flaw, signaling the need for customers to review affected-product guidance and remediation information as it becomes available.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
2 events from the most recent confirmed update back to the earliest known activity.
F5 issued a product advisory for the OpenSSL vulnerability tracked as CVE-2025-68160. The reference did not include a synopsis or further technical details.
F5 issued a product advisory بشأن the Linux kernel vulnerability tracked as CVE-2025-40154. No additional synopsis or impact details were provided in the reference.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
2 references tracked. Mallory keeps watching after this page renders.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.