Last Modified: Jan 21, 2025
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
17.1.0, 17.1.0.1, 17.1.0.2, 17.1.0.3, 17.1.1, 17.1.1.1, 17.1.1.2, 17.1.1.3, 17.1.1.4
Fixed In:
17.1.2
Opened: Sep 16, 2023 Severity: 3-Major
DNS lookups are invoked by advanced WAF without any relevant feature being turned on.
- Impacts performance. - Invokes DNS lookups that are not required.
- Parameter data type is set to auto-detect (auto-detect will detect URI automatically). - A request contains a URI.
Change the default wildcard parameter (or other relevant parameters) from auto-detect to another (usually alpha-numeric) option.
None