When the BIG-IP ASM system processes requests with JSON payload, an unusually large number of parameters can cause excessive CPU usage in the BIG-IP ASM bd process. (CVE-2020-27718)
Impact
When this vulnerability is exploited, the BIG-IP ASM system may take longer than usual to process these requests. As a result, the BIG-IP ASM system may experience some latency when passing requests to the backend server. Only BIG-IP ASM systems configured with JSON content profile with parameter parsing (enabled by default) are affected.