Rule Update
24-043 (17 September 2024)
Publish Date: 17 September 2024
Beschreibung
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
SolarWinds Dameware Web Help Desk
1012127* - SolarWinds Dameware Web Help Desk Deserialization Remote Code Execution Vulnerability (CVE-2024-28986)
Web Application PHP Based
1012121* - LibreNMS SQL Injection Vulnerability (CVE-2024-32480)
1012106 - WordPress 'Hash Form' Plugin Arbitrary File Upload Vulnerability (CVE-2024-5084)
1012146 - WordPress 'Porto' Theme Local File Inclusion Vulnerability (CVE-2024-3806 and CVE-2024-3807)
Web Server HTTPS
1012131 - Dolibarr ERP And CRM Reflected Cross-Site Scripting Vulnerability (CVE-2024-34051)
1012139 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-6672)
Web Server Miscellaneous
1012132* - XWiki Cross-Site Scripting Vulnerability (CVE-2024-37900)
1012138 - XWiki Server-Side Template Injection Vulnerability (CVE-2024-37901)
Web Server SharePoint BDC
1012113* - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2024-38023)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
SolarWinds Dameware Web Help Desk
1012127* - SolarWinds Dameware Web Help Desk Deserialization Remote Code Execution Vulnerability (CVE-2024-28986)
Web Application PHP Based
1012121* - LibreNMS SQL Injection Vulnerability (CVE-2024-32480)
1012106 - WordPress 'Hash Form' Plugin Arbitrary File Upload Vulnerability (CVE-2024-5084)
1012146 - WordPress 'Porto' Theme Local File Inclusion Vulnerability (CVE-2024-3806 and CVE-2024-3807)
Web Server HTTPS
1012131 - Dolibarr ERP And CRM Reflected Cross-Site Scripting Vulnerability (CVE-2024-34051)
1012139 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-6672)
Web Server Miscellaneous
1012132* - XWiki Cross-Site Scripting Vulnerability (CVE-2024-37900)
1012138 - XWiki Server-Side Template Injection Vulnerability (CVE-2024-37901)
Web Server SharePoint BDC
1012113* - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2024-38023)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.