WAF Rule Set Update Announcement
| Name | waf.sig | ||
| Version | 1.1.146 | ||
| StoneOS Version | 5.5R2-W-1.1 or above, BDS 5.5R8-3.4 or above | ||
| Release Date | 2022-7-28 | New Rules (80) |
Rule ID | Rule Name | Rule Details |
| 1070010029 | CVE-2021-40438: Apache HTTP Server 2.4.48 mod_proxy SSRF Vulnerability | Click for Details | |
| 1070010030 | CVE-2017-7659: Apache HTTP Server 2.4.45 DoS Vulnerability | Click for Details | |
| 1070010031 | CVE-2017-7269: WEB Microsoft IIS WebDAV Service Buffer Overflow Vulnerability | Click for Details | |
| 1070010032 | CVE-2017-7529: NGINX Integer Overflow Vulnerability | Click for Details | |
| 1070010027 | CVE-2021-28164: Jetty WEB-INF Sensitive Information Disclosure Vulnerability | Click for Details | |
| 1070010028 | CVE-2021-28169: Jetty Utility Servlets ConcatServlet Double Decoding Information Disclosure Vulnerability | Click for Details | |
| 1070210217 | Wordpress Mailpress Remote Code Execution Vulnerability. | Click for Details | |
| 1070210201 | CVE-2019-10392: Jenkins Git Client Remote Code Execution Vulnerability | Click for Details | |
| 1070210202 | CVE-2017-1000353,CVE-2016-9299: Jenkins CL Remote Code Execution Vulnerability | Click for Details | |
| 1070210203 | CVE-2021-22214: Gitlab Server-side Request Forgery Vulnerability | Click for Details | |
| 1070210204 | CVE-2018-7600: Drupal Drupalgeddon2 Remote Code Execution Vulnerability | Click for Details | |
| 1070210205 | CNVD-2019-16798: Coremail configuration leak | Click for Details | |
| 1070210206 | CVE-2018-7700: Dedecms V5.7 Remote code execution | Click for Details | |
| 1070210207 | CVE-2019-6340: Drupal Remote code execution | Click for Details | |
| 1070210209 | CVE-2010-1871: JBoss Remote code execution | Click for Details | |
| 1070210210 | CVE-2018-1000600: Jenkins remote command execution | Click for Details | |
| 1070210211 | CVE-2019-2729: Oracle WebLogic Server Deserialization Remote Command Execution Vulnerability | Click for Details | |
| 1070210212 | CVE-2016-5734: phpMyAdmin Authenticated Remote Command Execution Vulnerability | Click for Details | |
| 1070210213 | CVE-2019-8451: Jira Server-Side Request Forge Vulnerability | Click for Details | |
| 1070210214 | CVE-2019-3396: Atlassian Confluence Server file inclusion Vulnerability | Click for Details | ... | Updated Rules (10) |
Rule ID | Description | Ruel Details |
| 1060300000 | Directory Traversal Attack(/../and other encoding forms) | Click for Details | |
| 1070010024 | CVE-2013-4547: NGINX URI Processing Security Bypass Vulnerability | Click for Details | |
| 1070210047 | CVE-2018-2628: Oracle Weblogic Server Deserialization Remote Command Execution Vulnerability | Click for Details | |
| 1070210051 | CVE-2017-14919: Node.js zlib windowBits Server Remote Denial of Service Vulnerability | Click for Details | |
| 1070210134 | CVE-2020-7961: Liferay Portal Java Unmarshalling via JSONWS RCE Vulnerability | Click for Details | |
| 1070210166 | CVE-2021-2109: Oracle Weblogic Server Access Control Error Vulnerability | Click for Details | |
| 1090410089 | Suspected Behinder4 Webshell Access (Communication) | Click for Details | |
| 1090410090 | Suspected Behinder4 Webshell Access (Communication:protocol image) | Click for Details | |
| 1021010000 | XML Entity Tag Injection Attack | Click for Details | |
| 1060110004 | Detecting nmap from request_body | Click for Details | |