Cloudflare WAF adds detection rules for Zimbra and Vite vulnerabilities
New WAF Detection Rules
Cloudflare will release two new detection rules for its Web Application Firewall (WAF) on February 16, 2026:
- Zimbra - Local File Inclusion (CVE-2025-68645): Detects exploitation attempts against a local file inclusion vulnerability in Zimbra
- Vite - WASM Import Path Traversal (CVE-2025-31125): Detects path traversal attacks targeting Vite's WASM import functionality
Rollout Details
Both rules will launch in log mode, meaning they will identify suspicious traffic patterns and log the activity without blocking requests. This allows organizations to monitor for these specific threats and understand the impact before enabling active blocking rules.
Action Items
- Review WAF rule logs starting February 16 to monitor for attempted exploitation of these vulnerabilities
- Plan to enable blocking rules once you've assessed traffic patterns in your environment
- Ensure your Zimbra and Vite installations are updated with the latest security patches