Bug ID 1366229: Leaked Credentials Action unexpectedly modified after XML-format policy export and re-import

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3, 15.1.10.4, 16.1.3, 16.1.3.1, 16.1.3.2, 16.1.3.3, 16.1.3.4, 16.1.3.5, 16.1.4, 16.1.4.1, 16.1.4.2, 16.1.4.3, 17.1.0, 17.1.0.1, 17.1.0.2, 17.1.0.3, 17.1.1, 17.1.1.1, 17.1.1.2, 17.1.1.3

Opened: Oct 04, 2023

Severity: 4-Minor

Symptoms

"Leaked Credentials Detection" action unexpectedly modified after XML-format policy export and re-import.

Impact

"Leaked Credentials Action" is modified to default "Alarm and Blocking Page" after reimporting policy.

Conditions

Create a /login.php and set the Leaked Credentials Action to "Alarm and Leaked Credential Page"/"Alarm and HoneyPot Page". Export and reimport the policy in XML format.

Workaround

Policy can be exported and reimported in Binary format. Issue is not seen with Binary format.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips