Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Demeter_Luo_168

Icon for Nimbostratus rank

Nimbostratus

Sep 18, 2016

ASM: How to protection of session hijacking, What is principle?

Hi Dear All

How to protection of “session hijacking” use ASM, What is principle?

Many Thanks D.Luo

2 Replies

samstep
Cirrocumulus
Sep 19, 2016
Session Hijacking protection is described in the ASM Implementation manual here:

https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-12-1-0/15.html

Hope this helps,

Sam
Tom_Jurak
Nimbostratus
Feb 26, 2019
Hi there,

yes, it can affect users. Clients without Java script will be blocked. Be aware e.g. with COMPREHENSIVE policy even in transparent mode.

Tom

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5