Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Oct 26, 2023

Solved

CVE-2023-46747

Has anyone heard about https://www.praetorian.com/blog/advisory-f5-big-ip-rce/

It looks like this affects the same interface as CVE-2020-5902

Enes_Afsin_Al
Oct 26, 2023
Hi MJV,

K000137353: BIG-IP Configuration utility unauthenticated remote code execution vulnerability CVE-2023-46747
https://my.f5.com/manage/s/article/K000137353

4 Replies

Enes_Afsin_Al
MVP
Oct 26, 2023
Hi MJV,

K000137353: BIG-IP Configuration utility unauthenticated remote code execution vulnerability CVE-2023-46747
https://my.f5.com/manage/s/article/K000137353
- MJV
  Nimbostratus
  Oct 26, 2023
  Thank you so much!
Jim_M
Cirrus
Oct 31, 2023
The F5 advisory says the hotfix is available from the downloads page for each product (scroll to the bottom). Yet i dont see it listed.
Anonymous
Nov 15, 2023
Approved
Yes, the F5 BIG-IP RCE vulnerability detailed in the Praetorian advisory impacts the Traffic Management User Interface (TMUI), similar to the CVE-2020-5902 vulnerability. It's crucial for users to apply patches promptly and follow recommended mitigation steps to secure their systems.

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Related Content

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5