ASM Policy Blocking Scientific Notation in JSON Profile

Question

When tuning an ASM Policy what would cause your JSON Profile to flag a payload as such:&nbsp;Violation Details:&nbsp;Malformed JSON data [1]JSON Buffer4.5600012001319145eDescriptionMalformed documentMalformed numeric valueContextActual&nbsp;URL/path/to/urlWildcard URL*path*JSON ProfileDefaultApplied Blocking SettingsBlock&nbsp;Alarm&nbsp;Learn&nbsp;Attack TypeJSON Parser Attack&nbsp;Payload:{    ...  "dpps": 4.5600012001319145e+22,
  "ddpse": 222  ...]&nbsp;

gajji · Answer

Enable the relax_unicode_in_json internal parameter.

relax_unicode_in_json: The default is 0.
When the value is changed to 1, a bad unicode character does not produce a JSON malformed violation. A bad unicode character might be a legal unicode character that does not appear in the mapping of the system's JSON parser.

Forum Discussion

ASM Policy Blocking Scientific Notation in JSON Profile

1 Reply

Recent Discussions

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Related Content

Block traffic

domain blocking

Block IP after a number of ASM Blocks

TCL procedures to compress/expand a IPv6 address notation

Response and blocking page

JSON Buffer	4.5600012001319145e
Description	Malformed document Malformed numeric value
Context	Actual URL /path/to/url Wildcard URL path
JSON Profile	Default
Applied Blocking Settings	Block Alarm Learn