Bug ID 769997: ASM removes double quotation characters on cookies

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 15.0.0, 15.0.1

Fixed In:
15.1.0, 15.0.1.1, 14.1.2.1

Opened: Apr 07, 2019

Severity: 3-Major

Symptoms

ASM removes the double quotation characters on the cookie.

Impact

The server returns error as the cookie is changed by ASM.

Conditions

Cookie sent that contains double quotation marks.

Workaround

Set asm.strip_asm_cookies to false using the following command: tmsh modify sys db asm.strip_asm_cookies value false

Fix Information

ASM no longer removes the double quotation characters on the cookie.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips