Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4
Fixed In:
12.0.0, 11.6.0 HF5
Opened: Apr 09, 2015 Severity: 3-Major
A request that should be blocked is forwarded to to the server.
In case the request should have been blocked, it will arrive to the server.
The following conditions - 1. The "do nothing" header content profile on the request URL OR the request is longer than the max buffer size. while the exceed buffer length violation is turned off. (both cases causes an ignore payload state). 2. An irule or session tracking is assigned on the virual server.
N/A
We fixed a scenario where a request that should have been blocked still reached the server.