Bug ID 436727: Overridden signatures on parameter are ignored after parameter level change

Last Modified: Nov 22, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
11.2.0

Fixed In:
12.0.0

Opened: Nov 06, 2013
Severity: 3-Major

Symptoms

Overridden signatures on a parameter are ignored after the parameter level is changed. As a result, ASM incorrectly blocks an attack signature on a URL level parameter, when it is specifically configured not to.

Impact

ASM incorrectly blocks on an attack signature on an URL level parameter, when it is specifically configured not to.

Conditions

If parameter level is changed (such as from Global to URL), signature overrides on the parameter will not be used in enforcement.

Workaround

The parameter can be deleted and re-created. Alternatively, another signature override can be added for the parameter, and then click Apply Policy. (You can remove the additional override and click Apply Policy again afterwards.)

Fix Information

Fixed the configuration of signature overrides after the parameter level is changed.

Behavior Change