CVE-2025-60013

MEDIUM

F5OS-A 1.5.1-1.5.4 - Authenticated OS Command Injection via FIPS Module Initialization

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-60013. PoCs published by demining.

AI-analyzed exploit summary The repository contains a detailed writeup describing CVE-2025-60013, a vulnerability in F5OS-A FIPS HSM initialization that allows command injection via shell metacharacters in passwords, combined with the Scalar Venom Attack to recover Bitcoin private keys. No exploit code is present, only documentation and references to external tutorials.

Description

When a highly-privileged, authenticated attacker attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, arbitrary system commands may be executed, and the FIPS hardware security module (HSM) may fail to initialize. A successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Exploits (1)

nomisec WRITEUP 3 stars

by demining · poc

https://github.com/demining/Scalar-Venom-Attack

View Code ZIP pw:eip

The repository contains a detailed writeup describing CVE-2025-60013, a vulnerability in F5OS-A FIPS HSM initialization that allows command injection via shell metacharacters in passwords, combined with the Scalar Venom Attack to recover Bitcoin private keys. No exploit code is present, only documentation and references to external tutorials.

Classification

Writeup 90%

Attack Type

Other

Complexity

Complex

Reliability

Theoretical

Target: F5OS-A FIPS HSM

Auth required

Prerequisites: Privileged access (Admin or Resource Admin role) · HSM initialization process with malformed password

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://my.f5.com/manage/s/article/K000154661

Scores

CVSS v3 4.6

EPSS 0.0017

EPSS Percentile 6.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-78

Status published

Products (2)

f5/f5os-a 1.8.0

f5/f5os-a 1.5.1 - 1.5.4

Published Oct 15, 2025

Tracked Since Feb 18, 2026