Bug ID 1127093: Attack Signature in authorization header with base64 is not detected

Last Modified: Apr 28, 2025

Affected Product(s):
BIG-IP ASM(all modules)

Fixed In:
17.1.0

Opened: Jul 18, 2022

Severity: 3-Major

Symptoms

Under certain condition, ASM may not process signatures as expected.

Impact

Signature matching is skipped.

Conditions

If authorization header type is Bearer and base64 violations are not configured as blocking.

Workaround

Illegal base64 value violation should be set to blocking. If base64 decoding fails, then the requests are blocked.

Fix Information

ASM now processes signature as expected.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips