An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility which
may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or self IP addresses to execute arbitrary system commands.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or self IP addresses to execute arbitrary system commands.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Metrics
Affected Vendors & Products
References
History
Sat, 12 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Tue, 04 Feb 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
kev
|

Status: PUBLISHED
Assigner: f5
Published:
Updated: 2025-07-30T01:37:13.208Z
Reserved: 2023-10-25T18:51:34.198Z
Link: CVE-2023-46748

Updated: 2024-08-02T20:53:21.354Z

Status : Analyzed
Published: 2023-10-26T21:15:08.177
Modified: 2025-01-27T21:31:47.437
Link: CVE-2023-46748

No data.

No data.