From 15b23464038653ccb0d738979719cc0feffb1771 Mon Sep 17 00:00:00 2001 From: Vaibhav Singhal Date: Sun, 30 Mar 2025 19:12:41 -0700 Subject: [PATCH 1/6] Release-Apr-01-2025 --- .../docs/waf/change-log/2025-04-01.mdx | 169 ++++++++++++++++++ .../docs/waf/change-log/scheduled-changes.mdx | 57 +----- src/content/release-notes/waf.yaml | 7 +- 3 files changed, 178 insertions(+), 55 deletions(-) create mode 100644 src/content/docs/waf/change-log/2025-04-01.mdx diff --git a/src/content/docs/waf/change-log/2025-04-01.mdx b/src/content/docs/waf/change-log/2025-04-01.mdx new file mode 100644 index 00000000000000..4ce38d46210db6 --- /dev/null +++ b/src/content/docs/waf/change-log/2025-04-01.mdx @@ -0,0 +1,169 @@ +--- +title: "2025-04-01 +type: table +pcx_content_type: release-notes +sidebar: + order: 794 +tableOfContents: false +--- + +import { RuleID } from "~/components"; + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
RulesetRule IDLegacy Rule IDDescriptionPrevious ActionNew ActionComments
Cloudflare Managed Ruleset + + 100732Sitecore - Code Injection - CVE:CVE-2025-27218LogBlockThis is a New Detection
Cloudflare Managed Ruleset + + 100733Angular-Base64-Upload - Remote Code Execution - CVE:CVE-2024-42640LogBlockThis is a New Detection
Cloudflare Managed Ruleset + + 100734Apache Camel - Remote Code Execution - CVE:CVE-2025-29891LogBlockThis is a New Detection
Cloudflare Managed Ruleset + + 100735Progress Software WhatsUp Gold - Remote Code Execution - CVE:CVE-2024-4885LogBlockThis is a New Detection
Cloudflare Managed Ruleset + + 100737Apache Tomcat - Remote Code Execution - CVE:CVE-2025-24813LogBlockThis is a New Detection
Cloudflare Managed Ruleset + + 100659Common Payloads for Server-Side Template InjectionN/ADisabledN/A
Cloudflare Managed Ruleset + + 100659Common Payloads for Server-Side Template Injection - Base64N/ADisabledN/A
Cloudflare Managed Ruleset + + 100642LDAP InjectionN/ADisabledN/A
Cloudflare Managed Ruleset + + 100642LDAP Injection Base64N/ADisabledN/A
Cloudflare Managed Ruleset + + 100005DotNetNuke - File Inclusion - CVE:CVE-2018-9126, CVE:CVE-2011-1892, CVE:CVE-2022-31474N/ABlockN/A
Cloudflare Managed Ruleset + + 100527Apache Struts - CVE:CVE-2021-31805N/ABlockN/A
Cloudflare Managed Ruleset + + 100702Command Injection - CVE:CVE-2022-24108N/ABlockN/A
Cloudflare Managed Ruleset + + 100622CIvanti - Command Injection - CVE:CVE-2023-46805, CVE:CVE-2024-21887, CVE:CVE-2024-22024N/ABlockN/A
diff --git a/src/content/docs/waf/change-log/scheduled-changes.mdx b/src/content/docs/waf/change-log/scheduled-changes.mdx index bec39e085dbea2..518b6c3fdfadf7 100644 --- a/src/content/docs/waf/change-log/scheduled-changes.mdx +++ b/src/content/docs/waf/change-log/scheduled-changes.mdx @@ -25,63 +25,14 @@ import { RSSButton, RuleID } from "~/components"; - 2025-03-17 2025-04-01 + 2025-04-07 Log - 100732 + 100739A - + - Sitecore - Code Injection - CVE:CVE-2025-27218 - This is a New Detection - - - 2025-03-17 - 2025-04-01 - Log - 100733 - - - - - Angular-Base64-Upload - Remote Code Execution - CVE:CVE-2024-42640 - - This is a New Detection - - - 2025-03-17 - 2025-04-01 - Log - 100734 - - - - Apache Camel - Remote Code Execution - CVE:CVE-2025-29891 - This is a New Detection - - - 2025-03-17 - 2025-04-01 - Log - 100735 - - - - - Progress Software WhatsUp Gold - Remote Code Execution - - CVE:CVE-2024-4885 - - This is a New Detection - - - 2025-03-21 - 2025-04-01 - Log - 100737 - - - - Apache Tomcat - Remote Code Execution - CVE:CVE-2025-24813 + Next.js - Auth Bypass - CVE:CVE-2025-29927 - 2 This is a New Detection diff --git a/src/content/release-notes/waf.yaml b/src/content/release-notes/waf.yaml index 0b5fbfd19d8b47..985e0fc16a1056 100644 --- a/src/content/release-notes/waf.yaml +++ b/src/content/release-notes/waf.yaml @@ -5,11 +5,14 @@ productLink: "/waf/" productArea: Application security productAreaLink: /fundamentals/reference/changelog/security/ entries: - - publish_date: "2025-03-17" - scheduled_date: "2025-04-01" + - publish_date: "2025-04-01" + scheduled_date: "2025-04-07" individual_page: true scheduled: true link: "/waf/change-log/scheduled-changes/" + - publish_date: "2025-04-01" + individual_page: true + link: "/waf/change-log/2025-04-01/" - publish_date: "2025-03-22" individual_page: true link: "/waf/change-log/2025-03-22-emergency/" From ca168cde028bb22136fdb2f9a3c91555d916c613 Mon Sep 17 00:00:00 2001 From: Pedro Sousa <680496+pedrosousa@users.noreply.github.com> Date: Mon, 31 Mar 2025 09:43:41 +0100 Subject: [PATCH 2/6] Fix missing quote --- src/content/docs/waf/change-log/2025-04-01.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/content/docs/waf/change-log/2025-04-01.mdx b/src/content/docs/waf/change-log/2025-04-01.mdx index 4ce38d46210db6..23124f16012a27 100644 --- a/src/content/docs/waf/change-log/2025-04-01.mdx +++ b/src/content/docs/waf/change-log/2025-04-01.mdx @@ -1,5 +1,5 @@ --- -title: "2025-04-01 +title: "2025-04-01" type: table pcx_content_type: release-notes sidebar: From 9058052ef0e4e17b488fec59e6bcb8a94b529e27 Mon Sep 17 00:00:00 2001 From: Pedro Sousa <680496+pedrosousa@users.noreply.github.com> Date: Mon, 31 Mar 2025 09:46:41 +0100 Subject: [PATCH 3/6] Apply suggestions from PCX review --- src/content/docs/waf/change-log/2025-04-01.mdx | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/content/docs/waf/change-log/2025-04-01.mdx b/src/content/docs/waf/change-log/2025-04-01.mdx index 23124f16012a27..27645a69a6652e 100644 --- a/src/content/docs/waf/change-log/2025-04-01.mdx +++ b/src/content/docs/waf/change-log/2025-04-01.mdx @@ -83,7 +83,7 @@ import { RuleID } from "~/components"; 100659 - Common Payloads for Server-Side Template Injection + Common Payloads for Server-side Template Injection N/A Disabled N/A @@ -94,7 +94,7 @@ import { RuleID } from "~/components"; 100659 - Common Payloads for Server-Side Template Injection - Base64 + Common Payloads for Server-side Template Injection - Base64 N/A Disabled N/A From 2e57f8dd2ea9ce62cf6d4cafa6fa567bdb282e65 Mon Sep 17 00:00:00 2001 From: Vaibhav Singhal Date: Mon, 31 Mar 2025 12:39:08 -0700 Subject: [PATCH 4/6] Release-Apr-01-2025 --- .../docs/waf/change-log/2025-04-01.mdx | 66 +++++++++++++++++++ 1 file changed, 66 insertions(+) diff --git a/src/content/docs/waf/change-log/2025-04-01.mdx b/src/content/docs/waf/change-log/2025-04-01.mdx index 27645a69a6652e..6331d582c7e56a 100644 --- a/src/content/docs/waf/change-log/2025-04-01.mdx +++ b/src/content/docs/waf/change-log/2025-04-01.mdx @@ -165,5 +165,71 @@ import { RuleID } from "~/components"; Block N/A + + Cloudflare Managed Ruleset + + + + 100536C + GraphQL Command Injection + N/A + Disabled + N/A + + + Cloudflare Managed Ruleset + + + + 100536 + GraphQL Injection + N/A + Disabled + N/A + + + Cloudflare Managed Ruleset + + + + 100536A + GraphQL Introspection + N/A + Disabled + N/A + + + Cloudflare Managed Ruleset + + + + 100536B + GraphQL SSRF + N/A + Disabled + N/A + + + Cloudflare Managed Ruleset + + + + 100559A + Prototype Pollution - Common Payloads + N/A + Disabled + N/A + + + Cloudflare Managed Ruleset + + + + 100559A + Prototype Pollution - Common Payloads - Base64 + N/A + Disabled + N/A + From a69fe649a2e0be5891e2b315f71cb28cbd9aa223 Mon Sep 17 00:00:00 2001 From: Vaibhav Singhal Date: Mon, 31 Mar 2025 12:50:31 -0700 Subject: [PATCH 5/6] Release-Apr-01-2025 --- src/content/docs/waf/change-log/2025-04-01.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/content/docs/waf/change-log/2025-04-01.mdx b/src/content/docs/waf/change-log/2025-04-01.mdx index 6331d582c7e56a..ec9f26b05d626a 100644 --- a/src/content/docs/waf/change-log/2025-04-01.mdx +++ b/src/content/docs/waf/change-log/2025-04-01.mdx @@ -184,7 +184,7 @@ import { RuleID } from "~/components"; 100536 GraphQL Injection N/A - Disabled + Block N/A From 05e3f275bdf966f562caa3db10e5c9fb2a9f5822 Mon Sep 17 00:00:00 2001 From: Vaibhav Singhal Date: Mon, 31 Mar 2025 12:52:06 -0700 Subject: [PATCH 6/6] Release-Apr-01-2025 --- src/content/docs/waf/change-log/2025-04-01.mdx | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/content/docs/waf/change-log/2025-04-01.mdx b/src/content/docs/waf/change-log/2025-04-01.mdx index ec9f26b05d626a..dc861a340ad4be 100644 --- a/src/content/docs/waf/change-log/2025-04-01.mdx +++ b/src/content/docs/waf/change-log/2025-04-01.mdx @@ -168,7 +168,7 @@ import { RuleID } from "~/components"; Cloudflare Managed Ruleset - + 100536C GraphQL Command Injection