Bug ID 1117117: Trailing slash buffer details are missing from remote logger

Last Modified: Mar 30, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Fixed In:
17.1.0

Opened: Jun 19, 2022

Severity: 3-Major

Symptoms

Incoming requests with path parameters in the URI that cause "Trailing Slash" evasion sub-violation might be reported without buffer details in the remote logger and the GUI violation details.

Impact

The buffer reported in violation details is masked with asterisks "*****" while the buffer in the remote logger is missing.

Conditions

In terms of configurations, "Trailing Slash" and "Trailing Dot" must be enabled in the policy builder, with the addition of "Handle Path Parameters" set to "As Parameters" in the policy. In terms of incoming requests, the URI has to contain path parameters.

Workaround

None

Fix Information

For violation details and remote logger, the reported evasion sub-violation will have a buffer with value "N/A".

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips