Bug ID 1072197: Issue with input normalization in WebSocket.

Last Modified: Feb 07, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Fixed In:
17.0.0, 16.1.2.2, 15.1.5.1, 14.1.4.6, 13.1.5

Opened: Jan 10, 2022

Severity: 3-Major

Related Article: K94142349

Symptoms

Under certain conditions, attack signature violations might not be triggered in WebSocket scenario.

Impact

Attack detection is not triggered as expected.

Conditions

- ASM handles WebSocket flow. - Malicious WebSocket message contains specific characters.

Workaround

N/A

Fix Information

Attack detection is now triggered as expected.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips