Bug ID 648639: TS cookie name contains NULL or other raw byte

Last Modified: Nov 07, 2022

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3,,,,,,, 13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3

Fixed In:
13.1.0, 13.0.1,

Opened: Mar 02, 2017

Severity: 3-Major

Related Article: K92201230


The TS cookie name may intermittently contain NULL.


False positives triggered on modified domain cookies.


This can occur intermittently when ASM is provisioned and has a unique combination of security policy name and the server's cookie attributes (path and domain).


To resolve this, change the policy security name.

Fix Information

Fixed an issue with the TS cookie name length.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips