About 8,000 users of F5 Networks’ BIG-IP family of networking devices are still vulnerable to full system access and remote code-execution. Less than 500 machines have been patched since U.S. Cyber Command issued an alert to patch a critical bug that s under active exploit. The bug has a CVSS severity score of 10 out of 10, and at the time of disclosure, Shodan showed there were almost 8,500 vulnerable devices exposed on the internet. As of July 15, there were at least 8,041 vulnerable TMUI instances still exposed to the public internet.
Source: https://threatpost.com/thousands-f5-big-ip-users-takeover/157543/