WAF – WAF Release – 2025-12-18
Posted inCloudflare WAF

WAF – WAF Release – 2025-12-18

No CommentsPosted inCloudflare, WAF

This week’s release focuses on improvements to existing detections to enhance coverage.

Key Findings

  • Existing rule enhancements have been deployed to improve detection resilience against broad classes of web attacks and strengthen behavioral coverage.



RulesetRule IDLegacy Rule IDDescriptionPrevious ActionNew ActionComments
Cloudflare Managed Ruleset6429f7386b1546cf9dfce631be5ec20c N/AAtlassian Confluence – Code Injection – CVE:CVE-2021-26084 – BetaLogBlockThis rule is merged into the original rule “Atlassian Confluence – Code Injection – CVE:CVE-2021-26084” (ID: e8c550810618437c953cf3a969e0b97a )
Cloudflare Managed Ruleset9108ddb347b3497e9f9351640d9206e3 N/A PostgreSQL – SQLi – Copy – Beta Log Block This rule is merged into the original rule “PostgreSQL – SQLi – COPY” (ID: 705a6b5569d5472596910e3ce7265a4e )
Cloudflare Managed Rulesetcb687d73cc954092b58b90b00cd00ba7 N/A Generic Rules – Command Execution – Body Log Disabled This is a new detection.
Cloudflare Managed Rulesetbf30657ffa2a424cbf6570dbcd679ad4 N/AGeneric Rules – Command Execution – HeaderLogDisabledThis is a new detection.
Cloudflare Managed Ruleset6df040f716194070a242967cfd181fb3 N/AGeneric Rules – Command Execution – URILogDisabledThis is a new detection.
Cloudflare Managed Ruleset39a4fdc37be948709fa7492e7a95bc3a N/ASQLi – Tautology – URI – BetaLogBlockThis rule is merged into the original rule “SQLi – Tautology – URI” (ID: 4c580ea1b5174183b7f5e940b3de2e0a )
Cloudflare Managed Ruleset810e0ffe1dd84e67b159129b432ac90d N/ASQLi – WaitFor Function – BetaLogBlockThis rule is merged into the original rule “SQLi – WaitFor Function” (ID: b16fe708799441dea3049a99d5faba59 )
Cloudflare Managed Ruleset80690005fef342e0ad6bc9af596c741e N/ASQLi – AND/OR Digit Operator Digit 2 – BetaLogBlockThis rule is merged into the original rule “SQLi – AND/OR Digit Operator Digit” (ID: 98e7e08ae64247e2801ca4b388d80772 )
Cloudflare Managed Ruleseteaf11ab80b0d491cbb7186f303b2f3fe N/ASQLi – Equation 2 – BetaLogBlockThis rule is merged into the original rule “SQLi – Equation” (ID: 133c6f83cdf14509a4ca6b82a72a6b3a )

Source: Cloudflare



Latest Posts

Pass It On
Leave a Comment

Comments

No comments yet. Why don’t you start the discussion?

Leave a Reply