Rule Update
24-046 (01 outubro 2024)
Data de publicação: 01 outubro 2024
Descrição
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Arcserve Unified Data Protection
1012077* - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-26258)
Ivanti Endpoint Manager
1012154 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32842)
1012155 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32845)
1012156 - Ivanti Endpoint Manager XML External Entity Information Disclosure Vulnerability (CVE-2024-37397)
SolarWinds Access Rights Manager
1012124 - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2024-28992)
Web Application PHP Based
1012125* - OpenCart Directory Traversal Vulnerability (CVE-2024-21518)
Web Server HTTPS
1012068* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities (CVE-2024-29828 & CVE-2024-29829)
1012049* - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2024-23478)
Web Server Oracle
1012098* - Oracle WebLogic Server Information Disclosure Vulnerability (CVE-2024-21006)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Arcserve Unified Data Protection
1012077* - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-26258)
Ivanti Endpoint Manager
1012154 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32842)
1012155 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32845)
1012156 - Ivanti Endpoint Manager XML External Entity Information Disclosure Vulnerability (CVE-2024-37397)
SolarWinds Access Rights Manager
1012124 - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2024-28992)
Web Application PHP Based
1012125* - OpenCart Directory Traversal Vulnerability (CVE-2024-21518)
Web Server HTTPS
1012068* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities (CVE-2024-29828 & CVE-2024-29829)
1012049* - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2024-23478)
Web Server Oracle
1012098* - Oracle WebLogic Server Information Disclosure Vulnerability (CVE-2024-21006)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.