Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

EdgardoDeGracia's avatar
EdgardoDeGracia
Icon for Nimbostratus rankNimbostratus
Apr 10, 2019

F5 Web Application CVE Signatures For AWS WAF - FALSE POSITIVE

I am using AWS and implemented the “F5 Web Application CVE Signatures For AWS WAF” manage rule from AWS marketplace.   I am copying the sample request that is false positive from the AWS WAF con...
cloud
F5 Rules for AWS WAF
Jeff_Giroux_F5's avatar
Jeff_Giroux_F5
Ret. Employee
Jan 07, 2020

Please follow the procedure detailed in K21015971: Overview of F5 RuleGroups for AWS WAF

 

Reporting false positives on DevCentral

 

With full request logging you can now report on a rule that generates too many false positives. To report false positives, complete the following:

 

  • Log three to five requests that the rule has flagged as malicious requests.
  • Make sure that the requests do not contain any sensitive information; if they do, please mask the sensitive data with ****.
  • Attach the requests to a message (Ask a Question) on the DevCentral Answers forum.