Bug ID 1102301: Content profiles created for types other than video and image allowing executable

Last Modified: Mar 30, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Fixed In:
17.1.0, 16.1.4

Opened: Apr 24, 2022

Severity: 3-Major

Symptoms

When creating "API Security" policy, "Disallow File Upload of Executables" options are disabled for contents different than video/* or image/*.

Impact

Incorrect violation is raised.

Conditions

Create "API Security" policy with binary content URL.

Workaround

None

Fix Information

Disabled Disallow File Upload of Executables in content profiles.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips