AWS Fortinet OWASP Top 10 - The Complete Ruleset

Question

We have subscriptions to this service in AWS.  How can I check the current CVEs applied to this rule group?

xshkurti · Answer

@dazzer ,According to this link: AWS Marketplace: Fortinet Managed Rules for AWS WAF - Complete OWASP Top 10Fortinets WAF rulesets are based on the FortiWeb web application firewall security service signatures, and are updated on a regular basis to include the latest threat information from FortiGuard Labs. The Complete OWASP Top 10 Ruleset provides a comprehensive package for web application protection offered by Fortinet to help cover the entire list of OWASP Top 10 web application threats. Includes protection for SQL Injection, Cross Site Scripting, General and Known Exploits, Malicious Bots and Common Vulnerabilities and Exposures (CVE).Which means that there is not a single CVE to rule ID to match.To find out what CVEs are currently included, you may need to open a ticket with the Fortinet team. regards

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded