Last Modified: Dec 05, 2024
Affected Product(s):
BIG-IP ASM
Fixed In:
17.1.2, 16.1.5
Opened: Oct 04, 2023 Severity: 2-Critical
"Replace with" and "Remove header" CORS functionalities do not work
The request is blocked with "VIOL_CROSS_ORIGIN_REQUEST" violation
-- Allow CORS Enabled "Replace headers" Or "Remove headers" enabled with Header 'AAA' -- Disallowed header 'AAA' in request sent
None
The request passes with no violations.