A critical unauthenticated remote code execution vulnerability (CVE-2025-53521, CVSS 9.8) in F5 BIG-IP Access Policy Manager is under active exploitation. Affected versions include BIG-IP APM 15.1.0 through 15.1.10.7, as well as several other BIG-IP modules in the same version range. The fixed versions are 15.1.10.8, 16.1.6.1, and 17.1.3.
A critical unauthenticated remote code execution vulnerability (CVE-2025-53521) in F5’s BIG-IP Access Policy Manager (APM) solution is under active exploitation, the US Cybersecurity and Infrastructure Security Agency warned on Friday. CISA added the flaw to its Known Exploited Vulnerabilities catalog after F5 updated the related security advisory, The advisory was initially published on October 15, 2025, when F5 confirmed a data breach that resulted in a “highly sophisticated nation-state threat actor” accessing – among other … More → The post Attackers are exploiting RCE vulnerability in BIG-IP APM systems (CVE-2025-53521) appeared first on Help Net Security .