Forum Discussion
danielm1
Dec 11, 2021Cirrus
CVE-2021-44228 irule mitigation?
Hello there, Is there any iRule mitigation for the CVE-2021-44228? In support askf5 there is a mitigation using ASM but if I don't have it yet. Could I use an iRule? Regards, Daniel
John_Alam
Dec 11, 2021Employee
You may want to consider scanning the entire HTTP request as one variable. [HTTP::request],
You may also want to normalize it using [URI::decode [HTTP::request]] , or [URI::decode [HTTP::payload]] , this way, attacks including "jndi%3Aldap" do not succeed.
HTH
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects