We are pleased to announce the availability of R&S®Web Application Firewall 6.5.6-patch7 (LTS), intended for use in production. Release date: 2021-07-26. Revision: 7012c9a+b23994
We are pleased to announce the availability of R&S®Web Application Firewall 6.5.6-patch7 (LTS), intended for use in production. Release date: 2021-07-15. Revision: 1ec4b81+b23642
New R&S®WAF public repository 2021-06-28
A new R&S®WAF repository is available on github! This repository lists use cases to deploy and managed the WAF, like for example, deploying the WAF using terraform or improving security policies using provided workflows.
We are pleased to announce the availability of R&S®Web Application Firewall 6.6.0 (Latest), intended for use in production. Release date: 2021-05-04. Revision: 23fe72b79d.b22398
False positive on Google Sec-CH-UA headers 2021-04-30
The Adv. Detection Engine - SQLi of R&S®WAF blocks any request containing the Sec-CH-UA header. For more information about how to avoid this blocking, see our article.
We are pleased to announce the availability of R&S®Web Application Firewall 6.5.6-patch6 (LTS), intended for use in production. Release date: 2021-04-16. Revision: 99005db+b22005
This version fixes bugs in the GUI only. There is no RSE/ISO, upgrade of appliances is NOT required.
Microsoft Exchange Server Zero-Days (proxylogon) 2021-03-11
Microsoft has published multiple 0-day vulnerabilities on his product Exchange Server. Exploiting this vulnerabilities leads to authentication bypass and remote command execution. Exchange Server (on-premise) versions 2013, 2016 and 2019 are affected by these vulnerabilities.
