Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

am_gli's avatar
am_gli
Icon for Altostratus rankAltostratus
Aug 11, 2020

ASM - regex in Parameter Name

Hi,   I'm looking for a possibility to implement a dynamic parameter, that contains a string that may vary as parameter name itself.   It's something like this:   <soap:Envelope xmlns...> <abc...
ASM Advanced WAF
parameter
regex
security
Ivan_Chernenkii's avatar
Ivan_Chernenkii
Icon for Employee rankEmployee
Aug 11, 2020

Hello,

 

Did you try to create "Dynamic content value" parameter and define appropriate Extractions for it?

I think it could be useful in your case.

 

Thanks, Ivan

am_gli's avatar
am_gli
Icon for Altostratus rankAltostratus
Aug 12, 2020

Hi,

 

the problem is that it's not about the content of the parameter, but the parameter name itself.

"Dynamic content value" just removes the content check options as far as I can see.

 

 

  • Ivan_Chernenkii's avatar
    Ivan_Chernenkii
    Icon for Employee rankEmployee
    Aug 12, 2020

    Got it. Yes, it looks like I misunderstood you.

    What are you trying to achieve?

    May be you can simply create parameter <*:Envelope* wildcard parameter and disallow some metacharacters for parameter name?

     

    As I see, the only way how you can do it, is to create explicit parameter with "Dynamic parameter name" type, but this parameter can be defined only with Flow parameter level. So, if you have strictly defined flow (path from URL1 -> to URL2) and this parameter must be actual for it only, then you can use such approach

     

    Thanks, Ivan