WAF Rule Set Update Announcement
| Name | waf.sig | ||
| Version | 1.2.26 | ||
| StoneOS Version | 5.5R2-W-1.1 or above, BDS 5.5R8-3.4 or above | ||
| Release Date | 2025-3-27 | New Rules (9) |
Rule ID | Rule Name | Rule Details |
| 1070210466 | CVE-2025-30208:Vite 6.2.2 Abitrary File Read Vulnerability | Click for Details | |
| 1070210467 | CVE-2025-29927:Next.js Middleware Authentication Bypass Vulnerability | Click for Details | |
| 1070310185 | CVE-2024-8939:vLLM Denial of Service Vulnerability | Click for Details | |
| 1070310186 | CVE-2024-8768:vLLM Denial of Service Vulnerability | Click for Details | |
| 1070310187 | CVE-2024-7049:Open WebUI Authority Bypass Vulnerability | Click for Details | |
| 1070310188 | CVE-2024-7041:Open WebUI IDOR Vulnerability | Click for Details | |
| 1070310189 | CVE-2024-7038:Open WebUI Infomation Leakage Vulnerability | Click for Details | |
| 1070310190 | CVE-2024-7037:Open WebUI Directory Traversal Vulnerability | Click for Details | |
| 1070310191 | CVE-2024-6707:Open WebUI Directory Traversal Vulnerability | Click for Details | Updated Rules (1) |
Rule ID | Description | Ruel Details |
| 1070310159 | CVE-2022-25845:Fastjson Deserialization Vulnerability by Using java.lang.Exception | Click for Details | |