Skip to content

Commit 303729b

Browse files
vs-mgvs-mg
committed
Release-Sep-28-2025 Emergency
1 parent ad2d7ef commit 303729b

File tree

1 file changed

+55
-0
lines changed

1 file changed

+55
-0
lines changed

src/content/changelog/waf/2025-09-28-emergency-waf-release.mdx

Lines changed: 55 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,55 @@
1+
---
2+
title: "WAF Release - 2025-09-28 - Emergency"
3+
description: Cloudflare WAF managed rulesets 2025-09-28 emergency release
4+
date: 2025-09-28
5+
---
6+
7+
import { RuleID } from "~/components";
8+
9+
This week highlights a critical vendor-specific vulnerability: a deserialization flaw in the License Servlet of Fortra’s GoAnywhere MFT. By forging a license response signature, an attacker can trigger deserialization of arbitrary objects, potentially leading to command injection.
10+
11+
**Key Findings**
12+
13+
* Cisco (CVE-2025-20333, CVE-2025-20362, CVE-2025-20363): Multiple vulnerabilities that could allow attackers to exploit unsafe deserialization and input validation flaws. Successful exploitation may result in arbitrary code execution, privilege escalation, or command injection on affected systems.
14+
15+
**Impact**
16+
17+
Cisco (CVE-2025-20333, CVE-2025-20362, CVE-2025-20363): Exploitation enables attackers to escalate privileges or achieve remote code execution via command injection.
18+
19+
<table style="width: 100%">
20+
<thead>
21+
<tr>
22+
<th>Ruleset</th>
23+
<th>Rule ID</th>
24+
<th>Legacy Rule ID</th>
25+
<th>Description</th>
26+
<th>Previous Action</th>
27+
<th>New Action</th>
28+
<th>Comments</th>
29+
</tr>
30+
</thead>
31+
<tbody>
32+
<tr>
33+
<td>Cloudflare Managed Ruleset</td>
34+
<td>
35+
<RuleID id="a1bef4ada0b146d2862cad439ee0ab84" />
36+
</td>
37+
<td>100788</td>
38+
<td>Cisco Secure Firewall Adaptive Security Appliance - Remote Code Execution - CVE:CVE-2025-20333, CVE:CVE-2025-20362, CVE:CVE-2025-20363</td>
39+
<td>N/A</td>
40+
<td>Disabled</td>
41+
<td>This is a New Detection</td>
42+
</tr>
43+
<tr>
44+
<td>Cloudflare Managed Ruleset</td>
45+
<td>
46+
<RuleID id="51de6ce6596a40eb8200452ad30f768e" />
47+
</td>
48+
<td>100788A</td>
49+
<td>Cisco Secure Firewall Adaptive Security Appliance - Remote Code Execution - CVE:CVE-2025-20333, CVE:CVE-2025-20362, CVE:CVE-2025-20363</td>
50+
<td>N/A</td>
51+
<td>Disabled</td>
52+
<td>This is a New Detection</td>
53+
</tr>
54+
</tbody>
55+
</table>

0 commit comments

Comments
 (0)