Bug ID 677919: Enhanced Data Manipulation AJAX Support

Last Modified: Oct 01, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP FPS(all modules)

Known Affected Versions:
13.1.0, 13.1.0.1, 13.1.0.2

Fixed In:
14.0.0, 14.0.0, 14.0.0, 13.1.0.3

Opened: Aug 10, 2017
Severity: 3-Major

Symptoms

Need enhanced data manipulation detection to protect against modifying parameters in real-time (malware script in the browser) that are sent by JSON.

Impact

End-users already under attack could send manipulated JSON data to backend servers.

Conditions

There is a malware script in the browser performing real-time modification of parameters that are sent by JSON.

Workaround

None.

Fix Information

The Enhanced Data Manipulation Check has been improved so that it can now detect JSON data manipulation in the browser.

Behavior Change