Last Modified: Nov 07, 2022
Affected Product:
See more info
BIG-IP ASM
Known Affected Versions:
15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 15.1.1, 15.1.2, 15.1.2.1, 15.1.3, 15.1.3.1, 15.1.4, 15.1.4.1, 15.1.5, 16.1.0, 16.1.1, 16.1.2, 16.1.2.1
Fixed In:
17.0.0, 16.1.2.2, 15.1.5.1
Opened: Aug 17, 2021
Severity: 3-Major
When a URL is staged and a value content signature is detected, the matched request is blocked.
The request for staged URL is blocked
-- URL is set to staging; -- Only default ("Any") content profile is present, set to apply value signatures (all other content profiles deleted); -- Request matches attack signature
Configure relevant content profiles or leave the default content profiles configuration.
Fixed to correctly handle URL staging in case of only "Any" content profile.