CVE-2023-46747CISA KEVEPSS p99.9%

CVE-2023-46747F5 BIG-IP Configuration Utility Authentication Bypass Vulnerability

F5 / BIG-IP Configuration Utility

Description

F5 BIG-IP Configuration utility contains an authentication bypass using an alternate path or channel vulnerability due to undisclosed requests that may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute system commands. This vulnerability can be used in conjunction with CVE-2023-46748.

Scoring

EPSS96.52% probability of exploitation · percentile 99.9% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2023-10-31

(incoming)1

TypeTargetConfidenceTier
KEVEntryF5 BIG-IP Configuration Utility Authentication Bypass Vulnerabilitykev-cve-2023-467470%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
F5 BIG-IP Configuration Utility SQL Injection Vulnerability
CVE
F5 BIG-IP Missing Authentication Vulnerability
CVE
CVE-2026-41957
CVE
Fortinet FortiOS and FortiProxy Authentication Bypass Vulnerability
CVE
Ivanti Connect Secure and Policy Secure Authentication Bypass Vulnerability
CVE
CVE-2022-40684
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.