Bug ID 901061: Safari browser might be blocked when using Bot Defense profile and related domains.

Last Modified: Nov 07, 2022

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3, 14.1.0.5, 14.1.0.6, 14.1.2, 14.1.2.1, 14.1.2.2, 14.1.2.3, 14.1.2.4, 14.1.2.5, 14.1.2.6, 14.1.2.7, 15.1.0, 15.1.0.1, 15.1.0.2, 15.1.0.3, 15.1.0.4, 15.1.0.5, 16.0.0, 16.0.0.1

Fixed In:
16.1.0, 16.0.1, 15.1.1, 14.1.2.8

Opened: Apr 20, 2020

Severity: 3-Major

Symptoms

As a fix to ID879777 (https://cdn.f5.com/product/bugtracker/ID879777.html), when navigating to a related domain using Safari, requests might be blocked.

Impact

Some requests might be blocked.

Conditions

- Using Bot Defense profile, with "Cross Domain Requests" mode "Validate Upon Request" - BIG-IP version containing fix of ID879777 (16.0 and higher or EngHF) - Surfing the site using Safari browser.

Workaround

None.

Fix Information

Set the cookie so all requests in the target domain will contain it.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips