Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
11.3.0, 11.4.0, 11.4.1
Fixed In:
11.5.0
Opened: Nov 13, 2013 Severity: 3-Major Related Article:
K08514617
DoSL7D Transparent reports on attack based latency mode with no suspicious entities.
When the Latency-based detection is set to Transparent, an attack will be reported as soon as high latency is detected. In Blocking mode, a latency-based attack only starts when there is at least one suspicious entity by TPS or a heavy URL (11.5.0 and up).
When the Latency-based detection is set to Transparent.
This issue has no workaround at this time.
Application DoS: When Latency-based detection is set to Transparent, a latency-based attack is reported when there is at least one suspicious entity by TPS (or a heavy URL in version 11.5.0). This is consistent with Blocking mode. Previously, this type of attack was reported in Transparent mode as soon as the system detected high latency, even before the system detected a suspicious entity.