Skip to content

Commit 5329b8a

Browse files
elithrarelithrar
committed
initial CL
1 parent ead396e commit 5329b8a

File tree

1 file changed

+14
-0
lines changed

1 file changed

+14
-0
lines changed

src/content/changelog/workers/2025-03-22-next-js-vulnerability-waf.mdx

Lines changed: 14 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,14 @@
1+
---
2+
title: Managed WAF rule for Next.js vulnerability
3+
description: Automatic deployment of a Web Application Firewall rule to block requests that attempt to bypass authentication in Next.js applications as part of CVE-2025-29927.
4+
products:
5+
- workers
6+
- pages
7+
- waf
8+
- rules
9+
date: 2025-03-22T13:00:00Z
10+
---
11+
12+
We've deployed a WAF (Web Application Firewall) rule to all sites to protect against the [Next.js authentication bypass vulnerability](https://github.com/advisories/GHSA-f82v-jwr5-mffw) (`CVE-2025-29927`) published on March 21st, 2025.
13+
14+
TODO

0 commit comments

Comments
 (0)