Last Modified: Sep 13, 2023
Known Affected Versions:
13.1.0, 220.127.116.11, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168, 13.1.1, 22.214.171.124, 126.96.36.199, 14.0.0, 188.8.131.52, 184.108.40.206, 220.127.116.11, 18.104.22.168
15.0.0, 22.214.171.124, 126.96.36.199, 188.8.131.52
Opened: Oct 03, 2018 Severity: 3-Major
Brute Force CAPTCHA response page shown to an end-user has a support id and the last digit is truncated.
The support id presented to an end-user won't be matched to the one shown in the asm logs
- ASM Provisioned - ASM policy attached to a virtual server - ASM Brute Force Protection enabled in the asm policy - ASM Brute Force sends captcha mitigation page when a website is under brute force attack.
There is no workaround at this time.
The code is fixed, correct support id is shown in the captcha response page.