General availability: Security Update for Azure Front Door WAF CVE-2023-50164
Share
Services
Attention all Azure global WAF customers: We have deployed a new managed rule to address the security vulnerability [CVE-2023-50164](https://nvd.nist.gov/vuln/detail/CVE-2023-50164). This security vulnerability could potentially impact your application.
The fix has been rolled out for the ruleset version listed below. If you believe that your application is vulnerable to this exploit we recommend changing the state of this rule from disabled to enabled.
**Default Ruleset (DRS):** [**2.1**](https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-drs?tabs=drs21#drs99001-21)**,** [**2.0**](https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-drs?tabs=drs20#drs99001-20)
* ID: 99001017
* Rule Group: MS-ThreatIntel-CVEs
* State: Disabled
* Action: Anomaly Score
**Default Ruleset (DRS):** [**1.2**](https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-drs?tabs=drs21)**,** [**1.1**](https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-drs?tabs=drs11#drs99001-11)**,** [**1.0**](https://learn.microsoft.com/en-us/azure/web-application-firewall/afds/waf-front-door-drs?tabs=drs10#drs99001-10)
* ID: 99001017
* Rule Group: MS-ThreatIntel-CVEs
* State: Disabled
* Action: Block
Thank you for choosing Azure for your web security needs.
* Azure Front Door
* Web Application Firewall
* Features
* Services
* Security
* [ Azure Front Door](https://azure.microsoft.com/en-gb/products/frontdoor/)
* [ Web Application Firewall](https://azure.microsoft.com/en-gb/products/web-application-firewall/)
What else is happening at Microsoft Azure?
Read update
Services
Share
Read update
Services
Share
We’re retiring Azure Time Series Insights on 7 July 2024 – transition to Azure Data Explorer
May 31st, 2024
Services
Share