Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP ASM
Fixed In:
17.0.0, 16.1.2.2, 15.1.5.1
Opened: Aug 17, 2021 Severity: 3-Major
When a URL is staged and a value content signature is detected, the matched request is blocked.
The request for staged URL is blocked
-- URL is set to staging; -- Only default ("Any") content profile is present, set to apply value signatures (all other content profiles deleted); -- Request matches attack signature
Configure relevant content profiles or leave the default content profiles configuration.
Fixed to correctly handle URL staging in case of only "Any" content profile.