Bug ID 718409: Users may get blocked on Web Scraping or CAPTCHA

Last Modified: Dec 11, 2018

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Fixed In:
14.1.0

Opened: May 03, 2018
Severity: 3-Major

Symptoms

Users using touchscreen or touchpad may get falsely blocked under the Web Scraping violation. Similarly, some users may fail to pass the CAPTCHA challenge when triggered by Brute Force Mitigation, DoSL7 Mitigation, or Proactive Bot Defense.

Impact

Some legitimate users may get blocked.

Conditions

Either: - Web Scraping is enabled with Bot Detection set to alarm or to block (13.1.x/14.0.x). - CAPTCHA mitigation is in use due to another suspicious activity, triggered by Brute Force Mitigation, DoSL7 Mitigation, or Proactive Bot Defense (14.0.x). And: User is using touchscreen or touchpad.

Workaround

None.

Fix Information

Fixed false detection of some users as bots causing them to be blocked by Web Scraping or CAPTCHA.

Behavior Change