Skip to content

Commit a7c0974

Browse files
ay-cfay-cf
authored
Create 2025-10-07-emergency-waf-release.mdx
Add a release note for emergency waf release on Oct 7.
1 parent 78a2450 commit a7c0974

File tree

1 file changed

+44
-0
lines changed

1 file changed

+44
-0
lines changed

src/content/changelog/waf/2025-10-07-emergency-waf-release.mdx

Lines changed: 44 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,44 @@
1+
---
2+
title: "WAF Release - 2025-10-07 - Emergency"
3+
description: Cloudflare WAF managed rulesets 2025-10-07 emergency release
4+
date: 2025-10-07
5+
---
6+
7+
import { RuleID } from "~/components";
8+
9+
This week highlights multiple critical Cisco vulnerabilities (CVE-2025-20363, CVE-2025-20333, CVE-2025-20362). This flaw stems from improper input validation in HTTP(S) requests. An authenticated VPN user could send crafted requests to execute code as root, potentially compromising the device.
10+
The initial two were made available on September 28, with a third rule added today, October 7, for more robust protection.
11+
12+
* Cisco (CVE-2025-20333, CVE-2025-20362, CVE-2025-20363): Multiple vulnerabilities that could allow attackers to exploit unsafe deserialization and input validation flaws. Successful exploitation may result in arbitrary code execution, privilege escalation, or command injection on affected systems.
13+
14+
**Impact**
15+
16+
Cisco (CVE-2025-20333, CVE-2025-20362, CVE-2025-20363): Exploitation enables attackers to escalate privileges or achieve remote code execution via command injection.
17+
Administrators are strongly advised to apply vendor updates immediately
18+
19+
<table style="width: 100%">
20+
<thead>
21+
<tr>
22+
<th>Ruleset</th>
23+
<th>Rule ID</th>
24+
<th>Legacy Rule ID</th>
25+
<th>Description</th>
26+
<th>Previous Action</th>
27+
<th>New Action</th>
28+
<th>Comments</th>
29+
</tr>
30+
</thead>
31+
<tbody>
32+
<tr>
33+
<td>Cloudflare Managed Ruleset</td>
34+
<td>
35+
<RuleID id="12f808a5315441688f3b7c8a3a4d1bd6" />
36+
</td>
37+
<td>100788B</td>
38+
<td>Cisco Secure Firewall Adaptive Security Appliance - Remote Code Execution - CVE:CVE-2025-20333, CVE:CVE-2025-20362, CVE:CVE-2025-20363</td>
39+
<td>N/A</td>
40+
<td>Block</td>
41+
<td>This is a New Detection</td>
42+
</tr>
43+
</tbody>
44+
</table>

0 commit comments

Comments
 (0)