Recently viewed Clear
WAF rule set update for 2019-03-25 (legacy)
IMPORTANT: Our original WAF offering is now a legacy product. It was superseded by a new version, including a new interface and API, on July 13, 2020. The legacy version will continue to be supported for all existing users. The new version is available to all customers and is the default version for new customers as of July 13, 2020. Customers of the legacy WAF can contact support@fastly.com or their Fastly account team to upgrade.
ID
1PD2HFpi6qwkAsePake7pw
Version
v11Date
2019-03-25Type of Change
- Introduced new Fastly rule 4170010, which detects CVE-2019-6340 (Drupal 8 core Highly critical RCE)
- Introduced new Fastly rule 4170020, which detects the Magento Magestore Store Locator extension vulnerability
- Updated Fastly rule 4112031 to include additional user agents
- Updated Fastly rules 4113001, 4120010, and 4120011 to show correct match data
- Removed OWASP rules 905100 and 905110, which would never match
- Updated OWASP rules 932100 and 932110 to avoid false positives for Windows and Unix command injection
Affected Rule Sets
- OWASP
- Fastly Rules