Unrated severityCISA KEVNVD Advisory· Published Oct 26, 2023· Updated Oct 21, 2025
BIG-IP Configuration utility authenticated SQL injection vulnerability
CVE-2023-46748
Description
An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility which
may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or self IP addresses to execute arbitrary system commands.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.