Kubernetes WAF Version 1.7.1

Release Notes > Product Modifications > Kubernetes WAF Version 1.7.1

This version includes the following modifications:

Signature Update

• Protection from Log4J CVE based attacks.

Bug Fixes

• Custom rules bug fix.

• Minor fix in GUI to show Signature pattern and Expression details in Security Events.

Image Vulnerabilities

• Log4j CVE fixes in Elasticsearch and Logstash as per https://discuss.elastic.co/t/apache-log4j2-remote-code-execution-rce-vulnerability-cve-2021-44228-esa-2021-31/291476. Vulnerability scanners may flag the images as vulnerable as they don’t detect the mitigation but only the existence of log4j version.

• KWAF Image vulnerabilities fixes.

North America	International
Radware Inc.	Radware Ltd.
575 Corporate Drive	22 Raoul Wallenberg St.
Mahwah, NJ 07430	Tel Aviv 69710, Israel
Tel: +1-888-234-5763	Tel: 972 3 766 8666

© 2022 Radware, Ltd. All Rights Reserved. Radware and all other Radware product and service names are registered trademarks of Radware in the U.S. and other countries. All other trademarks and names are the property of their respective owners. Printed in the USA.