False Positive on AWS WAF F5 Managed Rule F5#OWASP.rule_SQL_INJ_SELECT_DATABASE____Parameter__AllQue

Question

Hello&nbsp;We have setup AWS WAF2 with F5 OWASP Subscription and currently getting some False Positive requests Blocks. We need support from F5support.We recently enabled "F5-OWASP_Managed" rules set on a AWS WAFv2 and Once we did we started seeing a false positive for an API call with the following rule...F5#OWASP.rule_SQL_INJ_SELECT_DATABASE____Parameter__AllQueryArguments_BodyAfter some further investigation we discovered the rule is tripped when we make a request to export data to a CSV file.Can you give us more background information on exactly what this rule is doing and how we should go about avoiding this false positive?&nbsp;RegardsIrantha

leslie_hubertus · Answer

Hi&nbsp;iranthawow&nbsp;- I'm featuring your post in this week's Community Highlights article to try to boost visibility so someone will answer.&nbsp;

Forum Discussion

False Positive on AWS WAF F5 Managed Rule F5#OWASP.rule_SQL_INJ_SELECT_DATABASE__ParameterAllQue

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

F5 Distributed Cloud WAF AI/ML Model to Suppress False Positives

Automating ACMEv2 Certificate Management on BIG-IP

CMS causing False Positives

NGINX Management Suite API Connectivity Manager - Modern API driven Applications

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS