Bug ID 853393: BIG-IQ fails to discover new attack-type from BIG-IP after ASU

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IQ Web App Security (ASM)(all modules)

Known Affected Versions:
6.0.1,,, 6.1.0, 7.0.0,,

Opened: Nov 27, 2019
Severity: 2-Critical


ASM cannot be imported into BIG-IQ logs an error in restjavad: [ERROR][/cm/asm/tasks/deploy-configuration/54d2f01c-1b90-498a-b579-e6eb57cac83f/worker AsmDeployConfigTaskWorker] java.lang.NullPointerException at java.util.concurrent.ConcurrentHashMap.putVal(ConcurrentHashMap.java:1011) at java.util.concurrent.ConcurrentHashMap.put(ConcurrentHashMap.java:1006)


ASM cannot be imported into BIG-IQ


Trying to import ASM configuration that it is affected by ID857633 (see https://cdn.f5.com/product/bugtracker/ID857633.html)


BIG-IP 1) Install a newer ASU to reassociate the affected signatures with the correct attack type 2) Run the following SQL on the affected BIG-IP devices mysql -p`perl -MF5::Cfg -e 'print F5::Cfg::get_mysql_password(user => q{root})'` mysql> DELETE FROM PLC.NEGSIG_ATTACK_TYPES WHERE attack_type_name = "Server-Side Request Forgery (SSRF)"; BIG-IQ Run this command from BIG-IQ console: restcurl -X PATCH /cm/asm/attack-types/0083eb62-8086-366f-b776-5b309566161d -d '{bigipId:"AIPrYoCG9m83dlswlWYWHQ", bigipAttackTypeId:"40"}' Finally, re-import ASM module on BIG-IQ.

Fix Information


Behavior Change