WAF Archives - Page 2 of 8 - Modern Workspace Pro

WAF – WAF Release – 2025-01-13

RulesetRule IDLegacy Rule IDDescriptionPrevious ActionNew ActionCommentsCloudflare Managed Ruleset6e0bfbe4b9c6454c8bd7bd24f49e5840 100704Cleo Harmony - Auth Bypass - CVE:CVE-2024-55956, CVE:CVE-2024-55953LogBlockNew DetectionCloudflare Managed Rulesetc993997b7d904a9e89448fe6a6d43bc2 100705Sentry - SSRFLogBlockNew DetectionCloudflare Managed Rulesetf40ce742be534ba19d610961ce6311bb 100706Apache Struts - Remote Code Execution - CVE:CVE-2024-53677LogBlockNew DetectionCloudflare Managed Ruleset67ac639a845c482d948b465b2233da1f 100707FortiWLM - Remote Code…

Modern Workspace Pro 24 February 2026No Comments

Cloudflare WAF

WAF – WAF Release – 2025-11-10

This week’s release introduces new detections for Prototype Pollution across three common vectors: URI, Body, and Header/Form. Key Findings These attacks can affect both API and web applications by altering normal behavior or bypassing security controls. Impact Exploitation may allow…

Modern Workspace Pro 24 February 2026No Comments

Cloudflare WAF

WAF – WAF Release – 2026-02-16

This week’s release introduces new detections for CVE-2025-68645 and CVE-2025-31125. Key Findings CVE-2025-68645: A Local File Inclusion (LFI) vulnerability in the Webmail Classic UI of Zimbra Collaboration Suite (ZCS) 10.0 and 10.1 allows unauthenticated remote attackers to craft requests to…

Modern Workspace Pro 18 February 2026No Comments

Cloudflare WAF

WAF – WAF Release – 2026-02-10

This week’s release changes the rule action from BLOCK to Disabled for Anomaly:Header:User-Agent - Fake Google Bot. RulesetRule IDLegacy Rule IDDescriptionPrevious ActionNew ActionCommentsCloudflare Managed Rulesetce11be543594412bb4bb92516aa0bef8 N/AAnomaly:Header:User-Agent - Fake Google BotEnabledDisabledWe are changing the action for this rule from BLOCK to…

Modern Workspace Pro 11 February 2026No Comments

Cloudflare WAF

WAF – WAF Release – 2026-02-02

This week’s release introduces new detections for CVE-2025-64459 and CVE-2025-24893. Key Findings CVE-2025-64459: Django versions prior to 5.1.14, 5.2.8, and 4.2.26 are vulnerable to SQL injection via crafted dictionaries passed to QuerySet methods and the Q() class. CVE-2025-24893: XWiki allows…

Modern Workspace Pro 3 February 2026No Comments

Cloudflare WAF

WAF – WAF Release – 2026-01-26

This week’s release introduces new detections for denial-of-service attempts targeting React (CVE-2026-23864). Key Findings CVE-2026-23864 is a denial-of-service vulnerability in React that enables an attacker to trigger service disruption. RulesetRule IDLegacy Rule IDDescriptionPrevious ActionNew ActionCommentsCloudflare Managed Rulesetaaede80b4d414dc89c443cea61680354 N/AReact Server -…

Modern Workspace Pro 26 January 2026No Comments

Mike on Anthropic Claude Sonnet is now available in Microsoft 365 Copilot [MC1247880]17 April 2026
Really interesting update. It feels like the bigger story here is not just that another model has been added, but…
Mike on Copilot entry point changes in Excel [MC1282571]17 April 2026
This is a helpful breakdown of what looks like a small UX change on the surface but has very real…
AI Logo Generator on GCP Release Notes: February 14, 202617 February 2026
It’s exciting to see Google SecOps SIEM and SOAR updates rolling out globally. I’m curious if there are any significant…
AI Music Generator on GCP Release Notes: February 13, 202615 February 2026
Security bulletins like the one for CVE-2025-13292 are always a bit concerning, but it’s reassuring to know Google is actively…
Nano Banana AI on GCP Release Notes: February 12, 202614 February 2026
This migration tool seems like a great step for those looking to modernize their infrastructure. Being able to move App…