22-Apr-2022 11:32
When tuning an ASM Policy what would cause your JSON Profile to flag a payload as such:
JSON Buffer | 4.5600012001319145e |
Description | Malformed document Malformed numeric value |
Context | Actual URL /path/to/url Wildcard URL *path* |
JSON Profile | Default |
Applied Blocking Settings | Block Alarm Learn |
Attack Type
JSON Parser Attack
Payload:
{
...
"dpps": 4.5600012001319145e+22,
"ddpse": 222
...
]
01-May-2022 09:27
Enable the relax_unicode_in_json internal parameter.
relax_unicode_in_json: The default is 0.
When the value is changed to 1, a bad unicode character does not produce a JSON malformed violation. A bad unicode character might be a legal unicode character that does not appear in the mapping of the system's JSON parser.