VYPR
Unrated severityCISA KEVNVD Advisory· Published Oct 26, 2023· Updated Oct 21, 2025

BIG-IP Configuration utility unauthenticated remote code execution vulnerability

CVE-2023-46747

Description

Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • F5, Inc./Big IPllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 17.1.0

Patches

Vulnerability mechanics

References

3

News mentions

3