Last Modified: Nov 22, 2021
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
11.2.1, 11.3.0, 11.4.0
Fixed In:
11.5.0, 11.4.0 HF3, 11.3.0 HF8, 11.2.1 HF8
Opened: May 20, 2013 Severity: 2-Critical
In 11.2.1-hf8 and later hotfix, ASM Enforcer may parse multi-part parameters which violate RFC.
False negative, missing a parsing error in multi-part.
Specific multi-part request.
None.
This release fixes an issue that sometimes caused the Enforcer to incorrectly parse multi-part data.