Operational Defect Database
BugZero found this defect 529 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1147545
AP cookie might be missing for first request when AP profile is being used with ASM policy
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP All
Affected releases:
17.1.0
17.1.0.1
17.1.0.2
17.1.0.3
17.1.1
17.1.1.1
17.1.1.2
17.1.1.3
Fixed releases:
No fixed releases provided.
Description:
Bug ID 1147545: AP cookie might be missing for first request when AP profile is being used with ASM policy ... Last Modified: Apr 26, 2024 ... Symptoms ... AP cookie might not be added from the client browser for the initial request towards virtual server when ASM policy is being used. ... Impact ... Very first client request towards AP endpoint might get blocked due to missing AP cookie. ... Conditions ... 2. AP and AI profile is created with a Protected Endpoint that has Enforcement Mode configured to Mitigate. ... 3. The Mitigate Missing Cookie field is enabled on the protected endpoint. ... 4. AP and AI profile is attached to virtual server. ... Workaround
