Safeguarding Against CVE-2025-24813 and CVE-2025-1974 using NetScaler WAF

Jaskirat spills the beans!

Hello!

I added a small section about WAF signatures to the newsletter on Monday. It looked like this if you missed it:

NetScaler WAF Signatures Update v150 was updated on the 28th of March.

New signature rules are generated for the vulnerabilities identified in the week 2025-03-28. You can download and configure these signature rules to protect your appliance from security-vulnerable attacks. Link to details.

These signature protections require that you turn on the Web Application Firewall, the high-level steps are listed here

Signature version 150 protections.

Something that drove this was an engineer's question that they wanted protection for CVE-2025-29927.

Well, Jaskirat has written this to offer more details, click me