Forum Discussion

Nimbostratus

Jun 22, 2017

CSRF appers when you use APM

During the activation APM module in one of our solutions, during the security scan now appears a CSRF vulnerability, which did not appear before. Exist some configuration or iRule to avoid this problem?

BIG-IP Access Policy Manager (APM)

devops

security

1 Reply

Peter_Silva_123
Historic F5 Account
Jun 22, 2017
Hi~ Not sure if this is what you are experiencing?

K61045143: Configuration utility CSRF vulnerability:

https://support.f5.com/csp/article/K61045143

Seems to be the only one I could find tied to APM. If not, please open a support ticket if this is something new.

thanks, ps

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CSRF appers when you use APM

1 Reply

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

irule help - pool command and ERR_RTE Routing problem

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

Credentialed Scanning - F5OS - Rseries

F5 Big-IQ read-only API username creation.

Will the F5 BIG-IP DDoS Hybrid Defender(DHD) be available on a platform like F5OS/rSeries

Related Content

How To Protect Your Applications from Cross Site Request Forgery (CSRF) with F5 Distributed Cloud

CSRF Prevention with F5's BIG-IP ASM v10.2

CSRF Protection not Working

CSRF logs

CSRF-Token request header is missing when using

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS