Operational Defect Database
BugZero found this defect 97 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 1505257
False positive with "illegal base64 value" for Basic Authorization header
Last update date:
4/26/2024
Affected products:
BIG-IP
BIG-IP ASM
Affected releases:
17.1.1.1
17.1.1.2
17.1.1.3
Fixed releases:
No fixed releases provided.
Description:
Severity: 4-Minor ... Symptoms ... False positive "illegal base64 value" is detected ... Impact ... A false positive is detected. ... Conditions ... The given base64 encoded value is legal base64 but the decoded auth-param is unparsable. ... Such request triggers "HTTP Protocol Compliance" violation when configured to do so and it is indeed triggering, but such request should not trigger "illegal base64 value". ... Workaround ... None
