Loading
An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility which may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or self IP addresses to execute arbitrary system commands. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Use CWE-89, F5 vendor hub and Big-Ip Access Policy Manager product page to widen CVE-2023-46748 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-61990, CVE-2025-58071 and CVE-2025-61960 for nearby disclosures in the same product family.