Bug ID 1017233: APM uses wrong session key when iRule for ActiveSync is used resulting in passwords corruption

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 16.1.0, 16.1.1

Fixed In:
17.0.0, 16.1.2, 15.1.4.1

Opened: May 10, 2021
Severity: 3-Major

Symptoms

A corrupted password is sent as part of the "Authorization" header to the backend device and as a result, http 404 is returned

Impact

User Authentication is failed by the backed server

Conditions

-- iRule for ActiveSync is used -- The BIG-IP system has multiple tmms running

Workaround

None

Fix Information

None

Behavior Change