Our release notes provide information on changes and enhancements in each release.

Note: Unless otherwise specified, the changes described here are rolled out throughout the week and may not be immediately available in all accounts.

In this release:

Heads Up: New Imperva IP addresses

New IPv4 address space is being added to support our growing network footprint. The new address range is 131.125.128.0/17 (131.125.128.1-131.125.255.254). These new addresses may be deployed in an Imperva PoP any time beginning May 19, 2023.

What does this mean for you?

  • If you use an allowlist, firewall, or ACL to limit direct access to your origin server, you must update your allowlist to permit the new /17 before May 19th. If you don't permit the new IPs, you may experience a site outage after that date, as any Imperva devices using the new IP space will be unable to access your server.

  • If you do not restrict access to your origin server by source IP, your origin is not protected and is subject to DDoS and other attacks. We strongly recommend that you restrict access from non-Imperva IP addresses.

For more details, see Allowlisting Imperva IP addresses & Setting IP restriction rules. The full, updated list of Imperva IP addresses is available on this page.

You can also retrieve the full list of Imperva IP addresses via API using the following URL: https://my.imperva.com/api/integration/v1/ips.

Limit access to sensitive operations

You can configure consent-based access control to limit Imperva from performing PCI-sensitive operations on your account and assets.

Restricting access to PCI-sensitive operations minimizes the risk that Imperva system users such as the Support team will be exposed to or edit your clients’ credit card and payment details.

This enhancement provides enhanced security and compliance with PCI DSS.

Where it’s located: On the Cloud Security Console Account Settings page.

For details on configuring consent-based access for your account, see Limit access to sensitive operations.

Advanced Bot Protection: New dashboard navigation

New navigation controls more intuitively guide you to the dashboard displays that you want to view. A toggle has been added to quickly switch between the new navigation and old navigation layouts.

What changed:

  • Predefined dashboards: This tab displays the current Dashboard. Region options have moved to the row below. This replaces the old Global and Reporting Data Region tabs.

  • Custom dashboards: This tab continues to display any dashboards that either you or your service analyst created.

  • Dashboards: Displays the currently selected dashboard and was moved from the right of the screen to the left. When Predefined dashboards is selected, this drop-down list now distinctly categorizes dashboards by Global and Region.

  • Region: This tab more clearly indicates when a Global dashboard is selected or the default Region name when a Region dashboard is selected. A drop-down list is available when you can select from 2 or more regions.

Where it’s located: Navigate to Advanced Bot Protection > Dashboards.

For more details, see Understanding the Dashboard.

Advanced Bot Protection API: Enable mitigation for individual websites

You can now use the API to disable or enable mitigation for individual websites, as described in the May 7, 2023 Release Notes. The property enable_mitigation was added to the API, which is set to true by default.

  • If set to true, all active conditions in all related policies behave according to their state (active or monitor).

  • If set to false, all active conditions in all related policies behave as if they are in monitor state.

For more details, see:

Terraform: New version of the Imperva Provider

Version 3.17.0 of the Imperva Terraform Provider is now available.

For the list of changes included in this version, see changelog.md.

For more details on the Imperva resources, see the Terraform Registry.

Recently mitigated CVEs

Mitigation for new Common Vulnerabilities and Exposures (CVEs) is added weekly by Imperva Research Labs.

To view the latest CVEs for which coverage was added, see Recently Mitigated CVEs.

 

 

More about the release notes

  • Tip: Open the latest release notes directly from the Cloud Security Console's Help menu.

  • Subscribe: To subscribe to updates about weekly releases, go to the Cloud Application Security Release Notes and click Subscribe to Updates, or add the following link to your RSS feed reader: https://docs.imperva.com/bundle/cloud-application-security/page/release-notes.rss