Bug ID 759840: False positive 'Null in request' violation or bare byte subviolations

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5

Fixed In:
15.0.0, 14.1.0.6

Opened: Feb 27, 2019

Severity: 3-Major

Symptoms

'Null in request' violation or bare byte subviolations detected when there is no null in request.

Impact

Traffic blocking or false positive alarm

Conditions

Brute force attack mitigated by captcha or challenge.

Workaround

None.

Fix Information

False positive violations no longer happens during brute force attack.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips