F5 Networks’ BIG-IP vulnerability has a CVSS ranking of 9.8 out of 10 – highly critical – for which the company released patches on March 10. The vulnerability is a remote command execution flaw in a network traffic security management appliance. An exploit for the vulnerability is likely to be available in the public domain soon, security firm NCC Group said on Thursday. On Friday, Palo Alto Networks said a Mirai botnet variant is chaining the vulnerability with another flaw as part of an attack, although the company did not clarify if the Mirai attacks were successful.”]
Source: https://www.bankinfosecurity.com/attackers-exploiting-f5-networks-big-ip-vulnerability-a-16238