F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!
I'm not sure why but ASM is picking up the attack signature as SQL Injection but marking it as informational. Any ideas?
If you go to Security>>Options: Application Security: Advanced Configuration: Violations List, what is the severity level assigned to Attack Signatures? You can click on Attack Signatures to see it.
Is the Request Informational because it's a legal request i.e. the Green Tick. This would suggest the signature(s) are in Staging. Once out of Staging the request becomes Illegal and the Severity should change accordingly.
or learn more...