Bug ID 564046: Actual attack detection threshold might be higher than configured one

Last Modified: Jul 13, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3, 12.1.3.1, 12.1.3.2, 12.1.3.3, 12.1.3.4, 12.1.3.5, 12.1.3.6, 12.1.3.7, 12.1.4, 12.1.4.1, 12.1.5, 12.1.5.1, 12.1.5.2, 12.1.5.3, 12.1.6

Opened: Dec 20, 2015

Severity: 3-Major

Symptoms

ASM brute force session based actual attack detection threshold might be higher than configured one.

Impact

Actual attack detection threshold is higher than configured one

Conditions

1. Failed logins are sent in high rate (more than 1 in 2 sec)

Workaround

None

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips