Bug ID 1052169: Traffic is blocked on detection of an SSRF violation even though the URI parameter is in staging mode

Last Modified: Dec 07, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
16.1.0, 16.1.1, 16.1.2, 16.1.2.1

Fixed In:
16.1.2.2

Opened: Oct 05, 2021

Severity: 3-Major

Symptoms

Traffic is blocked on an SSRF violation even though the URI parameter is in staging mode.

Impact

Traffic is blocked even though the URI parameter is in staging mode

Conditions

-- URI parameter should be in staging mode -- Traffic contains an SSRF deny-listed host as URI parameter value

Workaround

None.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips