Bug ID 1011061: Certain attack signatures may not match in multipart content

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
16.1.0, 16.1.1

Fixed In:
17.0.0, 16.1.2, 15.1.4.1, 14.1.4.5, 13.1.5

Opened: Apr 13, 2021

Severity: 2-Critical

Related Article: K39002226

Symptoms

Under certain conditions, ASM may not correctly detect attack signatures.

Impact

Attack detection is not triggered as expected.

Conditions

- ASM provisioned - Request contains a specially-crafted multipart body

Workaround

None

Fix Information

Attack detection is now triggered as expected.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips