Last Modified: Jul 12, 2023
Affected Product(s):
BIG-IQ Web App Security (ASM)
Known Affected Versions:
6.0.1, 6.0.1.1, 6.0.1.2, 6.1.0, 7.0.0, 7.0.0.1, 7.0.0.2
Opened: Nov 27, 2019 Severity: 2-Critical
ASM cannot be imported into BIG-IQ logs an error in restjavad: [ERROR][/cm/asm/tasks/deploy-configuration/54d2f01c-1b90-498a-b579-e6eb57cac83f/worker AsmDeployConfigTaskWorker] java.lang.NullPointerException at java.util.concurrent.ConcurrentHashMap.putVal(ConcurrentHashMap.java:1011) at java.util.concurrent.ConcurrentHashMap.put(ConcurrentHashMap.java:1006)
ASM cannot be imported into BIG-IQ
Trying to import ASM configuration that it is affected by ID857633 (see https://cdn.f5.com/product/bugtracker/ID857633.html)
BIG-IP 1) Install a newer ASU to reassociate the affected signatures with the correct attack type 2) Run the following SQL on the affected BIG-IP devices mysql -p`perl -MF5::Cfg -e 'print F5::Cfg::get_mysql_password(user => q{root})'` mysql> DELETE FROM PLC.NEGSIG_ATTACK_TYPES WHERE attack_type_name = "Server-Side Request Forgery (SSRF)"; BIG-IQ Run this command from BIG-IQ console: restcurl -X PATCH /cm/asm/attack-types/0083eb62-8086-366f-b776-5b309566161d -d '{bigipId:"AIPrYoCG9m83dlswlWYWHQ", bigipAttackTypeId:"40"}' Finally, re-import ASM module on BIG-IQ.
None