Last Modified: Sep 13, 2023
BIG-IQ Web App Security (ASM)
Known Affected Versions:
5.4.0 HF1, 5.0.0 HF1, 5.4.0 HF2, 5.4.0, 6.0.1, 220.127.116.11, 18.104.22.168, 6.1.0, 7.0.0, 22.214.171.124, 126.96.36.199
Opened: Oct 13, 2019 Severity: 3-Major
BIG-IQ Policies created before an ASU file which changes the names of Attack Signatures has been uploaded retain the original Attack Signature names. This results in an inability to alter the modified Attack Signatures in the Policies on BIG-IPs.
All previous-created policies referencing Attack Signatures with updated names are unable to modify those Attack Signatures. Re-discover/Re-import and Evaluate do not correct this issue. Policies created after the ASU import and deployment are not affected.
-- Policy created prior to import of ASU. -- ASU import which alters name of one or more attack signatures. Note that all ASU files are cumulative, containing all changes from previously released ASU files. -- Imported ASU file is then deployed to one or more BIG-IPs.
Export and then Import the affected policies on the BIG-IQ updates the affected Attack Signatures to the newly modified names.