WAF Rule Set Update Announcement
| Name | waf.sig | ||
| Version | 1.2.44 | ||
| StoneOS Version | 5.5R2-W-1.1 or above, BDS 5.5R8-3.4 or above | ||
| Release Date | 2025-12-8 | New Rules (15) |
Rule ID | Rule Name | Rule Details |
| 1070210548 | Landry OA admin.do Remote Command Execution Vulnerability | Click for Details | |
| 1070210549 | Landry OA api.aspx Arbitrary File Upload Vulnerability | Click for Details | |
| 1070210550 | Landry OA datajson.js Remote Command Execution Vulnerability | Click for Details | |
| 1070210551 | Landry OA doc_fileedit_word.aspx SQL Injection Vulnerability | Click for Details | |
| 1070210552 | Landry OA SQL Injection Vulnerability | Click for Details | |
| 1070210553 | LandryOA getLoginSessionId Information Disclosure Vulnerability | Click for Details | |
| 1070210554 | Landry OA kmImeetingRes.do SQL Injection Vulnerability | Click for Details | |
| 1070210555 | Landry OA rpt_listreport_definefield.aspx SQL Injection Vulnerability | Click for Details | |
| 1070210556 | Landry OA sysZonePersonInfo.do Information Disclosure Vulnerability | Click for Details | |
| 1070210557 | Landry OA UniformEntry.aspx SQL Injection Vulnerability | Click for Details | |
| 1070210558 | Landry OA wechatLoginHelper.do SQL Injection Vulnerability | Click for Details | |
| 1070310245 | CVE-2025-55182:React Server Components Remote Code Execution Vulnerability | Click for Details | |
| 1070010035 | CVE-2024-50379,CVE-2024-56337:Apache Tomcat TOCTOU Vulnerability | Click for Details | |
| 1070010036 | CVE-2025-24813:Apache Tomcat Remote Code Execution Vulnerability | Click for Details | |
| 1070010037 | CVE-2025-52520:Apache Tomcat Buffer Overflow Vulnerability | Click for Details | |