Last Modified: May 29, 2024
Affected Product(s):
BIG-IP TMOS
Known Affected Versions:
15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 17.0.0, 17.0.0.1, 17.0.0.2
Fixed In:
17.1.1, 16.1.4, 15.1.10
Opened: Apr 18, 2022 Severity: 4-Minor
Request with JSON body with more than 600 parameters causes the event log to show incorrect violations.
No violation for passing maximum parameters given in event log, although the maximum number of allowed parameters was exceeded.
-- 'Maximum params' configured to 600 in JSON profile -- 'Maximum array length' configured to 'Any' -- A request occurs that contains more than 600 parameters in the body in JSON format
None
The violations VIOL_HTTP_PROTOCOL and VIOL_JSON_FORMAT are now recorded in the event log.