Depends, the rule set can be customized or even paid for. However the common one is provided by OWASP, no idea how many rulesthey have but there is hundreds or thousands of them. Each rule is assigned an anomaly value based on the threat, you could trigger multiple rules. If the total anomaly value goes over the threshold the action is blocked.
Based on the many recent topics here about this I would guess they probably added or changed a rule that is giving the false positives. No one has posted the rule being triggered so it's impossible to determine what the issue may be. The rule being triggeed may be listed in your server error logs. Post the entire line(s).