Bug ID 786709: Upgrade fails if using multiple tokens on CAPTCHA custom response

Last Modified: Sep 23, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP ASM, Install/Upgrade(all modules)

Known Affected Versions:
13.0.0, 13.0.0 HF1, 13.0.0 HF2, 13.0.0 HF3, 13.0.1, 13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 14.0.0,,,,,, 14.0.1,, 14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,, 15.0.0, 15.0.1,,,,, 15.1.0,,,,,, 15.1.1, 15.1.2,, 15.1.3,, 15.1.4

Opened: May 26, 2019
Severity: 3-Major


An upgrade from a release 12.1.x or earlier fails if a CAPTCHA custom response is configured with multiple CAPTCHA tokens in the response. This is an invalid configuration, but was not prevented on 12.1.x and earlier.


Upgrade failure.


-- Application DoS profile is configured on 12.1.x or earlier. -- Custom CAPTCHA response which includes multiple CAPTCHA tokens. -- Upgrading to 13.0.x or later.


Modify the bigip.conf file to remove the additional tokens. 1. In the bigip.conf file, search for the 'captcha-response' sections. 2, Look for multiple %DOSL7.captcha.*% tokens on the same response. 3. Remove the additional tokens. 4. Load the config.

Fix Information


Behavior Change