Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IP ASM
Fixed In:
14.1.0
Opened: Jun 28, 2018 Severity: 3-Major
Users using touchscreen or touchpad may get falsely blocked under the Web Scraping violation. Similarly, some users may fail to pass the CAPTCHA challenge when triggered by Brute Force Mitigation, DoSL7 Mitigation, or Proactive Bot Defense.
Some legitimate users may get blocked.
Either: - Web Scraping is enabled with Bot Detection set to alarm or to block (13.1.x/14.0.x). - CAPTCHA mitigation is in use due to another suspicious activity, triggered by Brute Force Mitigation, DoSL7 Mitigation, or Proactive Bot Defense (14.0.x). And: User is using touchscreen or touchpad.
None.
Fixed false detection of some users as bots causing them to be blocked by Web Scraping or CAPTCHA.