Security Advisory Description
An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility. (CVE-2023-46748)
Impact
This vulnerability may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or self IP addresses to execute arbitrary system commands. There is no data plane exposure; this is a control plane issue only.