CVE-2023-46747

NVD Published Date: October 26, 2023 at 09:15 PM
NVD Last Modified: February 01, 2024 at 02:15 AM
Download Patch
Vulnerability ID
CVE-2023-46747
Severity
CRITICAL
Severity Score
9.8
Summary
Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Mitigation and Patches
-
Metasploit Payload
-
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE ID
CWE-306

Recent Publish

CVE-2024-28986

2024-08 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB5041578)

2024-08 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5041578)

2024-08 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5041578)

2024-08 Dynamic Cumulative Update for Windows 10 Version 22H2 for x64-based Systems (KB5041580)

2024-08 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5041580)

See SecOps Solution
in action

Schedule Demo