claytonvantol.us
SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2023-46748-f5-big-ip-configuration-utility.log

CVE-2023-46748 — F5 BIG-IP Configuration Utility SQL Injection Vulnerability

2023-10-31 • CISA Known Exploited Vulnerability

[event] F5 BIG-IP Configuration utility contains an SQL injection vulnerability that may allow an authenticated attacker with network access through the BIG-IP management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46747.

> AFFECTED SOFTWARE

Field Value
Vendor F5
Product BIG-IP Configuration Utility
CWE CWE-89
CVE ID CVE-2023-46748
Date Added 2023-10-31
Due Date 2023-11-21
Ransomware Campaign Unknown

> MITIGATION

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Due Date: 2023-11-21

> REFERENCES

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:10 UTC