AWS Managed Rules changelog - AWS WAF, AWS Firewall Manager, and AWS Shield Advanced

AWS Managed Rules changelog

This section lists changes to the AWS Managed Rules for AWS WAF since their release in November, 2019.

Note

This changelog reports changes to the rules and rule groups in AWS Managed Rules for AWS WAF. It doesn't report changes to the IP address lists that are used by the rules in the IP reputation rule groups, due to the dynamic nature of those lists.

Rule group Rules affected Description Date
Windows operating system All Improved the configuration of the rules. Sep 23, 2020
PHP application
  • PHPHighRiskMethodsVariables_QUERYARGUMENTS

  • PHPHighRiskMethodsVariables_BODY

Changed the text transformation from HTML decode to URL decode, to improve blocking. Sep 16, 2020
POSIX operating system
  • UNIXShellCommandsVariables_QUERYARGUMENTS

  • UNIXShellCommandsVariables_BODY

Changed the text transformation from HTML decode to URL decode, to improve blocking. Sep 16, 2020
Core rule set
  • GenericLFI_QUERYARGUMENTS

  • GenericLFI_URIPATH

  • GenericLFI_BODY

Changed the text transformation from HTML decode to URL decode, to improve blocking. Aug 07, 2020
Linux operating system
  • LFI_URIPATH

  • LFI_QUERYARGUMENTS

  • LFI_BODY

Changed the text transformation from HTML entity decode to URL decode, to improve detection and blocking. May 19, 2020
Anonymous IP List All New rule group in IP reputation rule groups to block requests from services that allow the obfuscation of viewer identity, to help mitigate bots and evasion of geographic restrictions. March 06, 2020
Wordpress application
  • WordPressExploitableCommands_QUERYSTRING

New rule that checks for exploitable commands in the query string. March 03, 2020
Core Rule Set (CRS)
  • SizeRestrictions_QUERYSTRING

  • SizeRestrictions_Cookie_HEADER

  • SizeRestrictions_BODY

  • SizeRestrictions_URIPATH

Adjusted the size value constraints for improved accuracy. March 03, 2020
SQL database
  • SQLi_URIPATH

The rules now check the message URI. January 23, 2020
SQL database
  • SQLi_BODY

  • SQLi_QUERYARGUMENTS

  • SQLi_COOKIE

Updated text transformations. December 20, 2019
Core Rule Set (CRS)
  • CrossSiteScripting_URIPATH

  • CrossSiteScripting_BODY

  • CrossSiteScripting_QUERYARGUMENTS

  • CrossSiteScripting_COOKIE

Updated text transformations. December 20, 2019