Rule Update
22-023 (17 maio 2022)
Data de publicação: 17 maio 2022
Descrição
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
SolarWinds Network Performance Monitor
1011417 - SolarWinds Orion Platform Blind SQL Injection Vulnerability (CVE-2021-35212)
Web Application PHP Based
1011425 - WordPress 'Anti-Malware Security And Brute-Force Firewall' Plugin Cross-Site Scripting Vulnerability (CVE-2022-0953)
1011416* - WordPress 'Astro Pro Addon' Plugin Unauthenticated SQL Injection Vulnerability (CVE-2021-24507)
1011411* - WordPress 'CleanTalk AntiSpam' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-28221)
1011419* - WordPress 'CleanTalk AntiSpam' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-28222)
1011423 - WordPress 'SiteGround Security' Plugin Authentication Bypass Vulnerability (CVE-2022-0993)
Web Client Common
1011398* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB22-16) - 1
1011397* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB22-16) - 2
1011415* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB22-16) - 3
Web Server Adobe ColdFusion
1011422* - Adobe ColdFusion Cross-site Scripting Vulnerability (CVE-2022-28818)
Web Server Common
1011274* - Microsoft Windows HTTP Protocol Stack Remote Code Execution Vulnerability (CVE-2022-21907)
Zoho ManageEngine
1011420* - Zoho ManageEngine OpManager SQL Injection Vulnerability (CVE-2022-27908)
Zoho ManageEngine ADSelfService Plus
1011412* - Zoho ManageEngine ADSelfService Plus Remote Code Execution Vulnerability (CVE-2022-28810)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
SolarWinds Network Performance Monitor
1011417 - SolarWinds Orion Platform Blind SQL Injection Vulnerability (CVE-2021-35212)
Web Application PHP Based
1011425 - WordPress 'Anti-Malware Security And Brute-Force Firewall' Plugin Cross-Site Scripting Vulnerability (CVE-2022-0953)
1011416* - WordPress 'Astro Pro Addon' Plugin Unauthenticated SQL Injection Vulnerability (CVE-2021-24507)
1011411* - WordPress 'CleanTalk AntiSpam' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-28221)
1011419* - WordPress 'CleanTalk AntiSpam' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-28222)
1011423 - WordPress 'SiteGround Security' Plugin Authentication Bypass Vulnerability (CVE-2022-0993)
Web Client Common
1011398* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB22-16) - 1
1011397* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB22-16) - 2
1011415* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB22-16) - 3
Web Server Adobe ColdFusion
1011422* - Adobe ColdFusion Cross-site Scripting Vulnerability (CVE-2022-28818)
Web Server Common
1011274* - Microsoft Windows HTTP Protocol Stack Remote Code Execution Vulnerability (CVE-2022-21907)
Zoho ManageEngine
1011420* - Zoho ManageEngine OpManager SQL Injection Vulnerability (CVE-2022-27908)
Zoho ManageEngine ADSelfService Plus
1011412* - Zoho ManageEngine ADSelfService Plus Remote Code Execution Vulnerability (CVE-2022-28810)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.