Rule Update

23-041 (September 26, 2023)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Django Server
1011843* - Django Denial of Service Vulnerability (CVE-2023-23969)


Eclipse Jetty
1011378* - Eclipse Jetty Unauthenticated Information Disclosure Vulnerability (CVE-2021-28169)


MinIO Server
1011830* - MinIO Information Disclosure Vulnerability (CVE-2023-28432)


PaperCut
1011731* - PaperCut NG And MF Authentication Bypass Vulnerability (CVE-2023-27350)


SolarWinds Orion Platform
1011854 - SolarWinds Orion Platform Deserialization of Untrusted Data Vulnerability (CVE-2023-33225)
1011856 - SolarWinds Orion Platform Incomplete List of Disallowed Inputs Vulnerability (CVE-2023-23844)


Splunk Enterprise
1011817* - Splunk 'Lookup File Editing' App Directory Traversal Vulnerability (CVE-2023-32714)


Web Application Common
1011839* - Progress MOVEit Transfer SQL Injection Vulnerability (CVE-2023-36932) - 2


Web Application PHP Based
1011870 - WordPress 'Media Library Assistant' Plugin Remote Code Execution Vulnerability (CVE-2023-4634)


Web Server Adobe ColdFusion
1011857 - Adobe ColdFusion Directory Traversal Vulnerability (CVE-2023-26361)
1011846* - Adobe ColdFusion Remote Code Execution Vulnerability (CVE-2023-38204)


Web Server Miscellaneous
1011869 - Citrix ShareFile Storage Zones Controller Directory Traversal Vulnerability (CVE-2023-24489)
1011858 - XWiki Code Injection Vulnerability (CVE-2023-35166)
1011860 - XWiki Code Injection Vulnerability (CVE-2023-37462)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.