Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2
Fixed In:
13.0.0, 12.1.3
Opened: Jul 06, 2016 Severity: 3-Major
When HTML5 Cross-Domain Request Enforcement is enabled on a URL, Header-Based Content Profiles cannot be updated.
Header-Based Content Profiles cannot be updated on the URL.
HTML5 Cross-Domain Request Enforcement is enabled on a URL.
Use the following procedure: 1. Disable HTML5 Cross-Domain Request Enforcement on the URL. 2. Update the Header-Based Content Profiles. 3. Re-enabled HTML5 Cross-Domain Request Enforcement.
Updating Header-Based Content Profiles for a URL with HTML5 Cross-Domain Request Enforcement is now successful.