Last Modified: Mar 12, 2025
Affected Product(s):
BIG-IP TMOS
Known Affected Versions:
17.1.0, 17.1.0.1, 17.1.0.2, 17.1.0.3, 17.1.1, 17.1.1.1, 17.1.1.2, 17.1.1.3, 17.1.1.4, 17.1.2, 17.1.2.1
Opened: Mar 11, 2024 Severity: 4-Minor
If the HTTPS scheme is not included in the 'Proxy Bot Protection Endpoint URL - Web' when the proxy is enabled, BIG-IP cannot reach the Shape server. As a result, JavaScript will not be downloaded, and inference will not be received.
Bot defence feature won't work. -- Without JavaScript and inference data, Security feature cannot properly analyze and block bot traffic. -- Malicious bot traffic may bypass detection, leading to potential fraud, scraping, or automated attacks. -- Applications relying on Shape's bot protection may not function as expected, potentially affecting user access or API security. -- Traffic analytics and insights from Shape may be incomplete or inaccurate.
Proxy is enabled, but HTTPS scheme is not included in the 'Proxy Bot Protection Endpoint URL - Web'
Add HTTPS scheme along with URL in the 'Proxy Bot Protection Endpoint URL - Web' when the proxy is enabled,
None