Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3
Fixed In:
12.0.0, 11.6.0 HF4
Opened: Feb 02, 2015 Severity: 2-Critical
System wide signature updates, like Attack Signature Update, can cause some security policies to erroneously change their enforcement of attack signatures to Transparent mode.
A security policy will not block attack signatures that are meant to be blocked.
There are security policies in both Transparent and Blocking mode, and there is an update to the system's attack signatures.
Toggle the transparent/enforce flag on a security policy, and apply the security policy.
We fixed an issue that caused false positives or a lack of enforcement (such as not blocking) when attack signatures were updated or modified.