Bug ID 628351: Redirect loops on URLs with Path Parameters when Proactive Bot Defense is enabled

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 13.1.5,, 14.0.0,,,,,, 14.0.1,

Fixed In:
13.0.0, 12.1.3

Opened: Nov 14, 2016
Severity: 3-Major


When Proactive Bot Defense is enabled, requests to URLs with Path Parameters (URLs containing a semicolon ;) may get stuck on a redirect loop. This typically applies to URLs which do not respond with HTML content or to URLs with low traffic.


Clients cannot access the web server, getting caught in an infinite redirect loop.


-- Proactive Bot Defense is enabled. -- URLs use Path Parameters (containing the semicolon ; character).



Fix Information

Requests to URLs with ";" no longer get stuck in a redirect loop when Proactive Bot Defense is enabled.

Behavior Change