The decisive security measures exposure , live as CVE-2020 - 5902 , admit an attacker get at the production ’s Traffic Management User Interface ( TMUI ) conformation characteristic to bring parole and early tender information , bug traffic , and execute arbitrary cipher or command , leave in the gimmick being wholly compromise . The problem was declare July 1 . At the time of revealing , Positive Technologies describe that thousand of vulnerable devices were exhibit to the internet , let in many in the United States , whose employee were praise with give away the exposure to F5 , . A few daylight posterior a cogent evidence - of – construct exploit ( PoC ) was free , and the low endeavor at development were patched on July 5 . F5 , which bring out a eyepatch before revealing , assure customer to make bold that if they have go bad to instal the spell for CVE-2020 - 5902 their system of rules have been compromise . Since July 6 , CISA order authorities department and means have encounter scanning and monitoring body process link with this glitch . The bureau inquire several potential gap result from tap this vulnerability , include against U.S. politics and commercial arrangement , and it has substantiate two case where system have been compromise to date stamp . CISA has cheer establishment to update their BIG - informatics Cartesian product directly , and should do swiftly if they find evidence of attempt . In the issue of a rupture , the authority ’s testimonial include reimaging compromise innkeeper , reset calculate word , throttle get at to the vulnerable management user interface and enforce web segmentation to forbid the assailant from impress laterally within the network .