Deep Security Center
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Directory Client LDAP TCP
1012276 - Microsoft Windows LDAP Integer Overflow Vulnerability (CVE-2024-49112)
Microsoft Configuration Manager
1012289 - Microsoft Configuration Manager SQL Injection Vulnerability (CVE-2024-43468)
Progress WhatsUp Gold
1012287 - Progress WhatsUp Gold Directory Traversal Vulnerability (CVE-2024-12105)
Web Application PHP Based
1012265 - WordPress 'White Label MS' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-0422)
Web Client Common
1012282 - Microsoft Windows Themes Spoofing Vulnerability (CVE-2025-21308)
Web Server Miscellaneous
1012248 - Jenkins 'Simple Queue' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2024-54003)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Directory Client LDAP TCP
1012276 - Microsoft Windows LDAP Integer Overflow Vulnerability (CVE-2024-49112)
Microsoft Configuration Manager
1012289 - Microsoft Configuration Manager SQL Injection Vulnerability (CVE-2024-43468)
Progress WhatsUp Gold
1012287 - Progress WhatsUp Gold Directory Traversal Vulnerability (CVE-2024-12105)
Web Application PHP Based
1012265 - WordPress 'White Label MS' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-0422)
Web Client Common
1012282 - Microsoft Windows Themes Spoofing Vulnerability (CVE-2025-21308)
Web Server Miscellaneous
1012248 - Jenkins 'Simple Queue' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2024-54003)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
MyQ Print Server
1012268 - MyQ Print Server Remote Code Execution Vulnerability (CVE-2024-28059)
Progress WhatsUp Gold
1012237 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46905)
Trend Micro Common
1012272 - Trend Micro Multiple Products Path Traversal Vulnerabilities
Web Application PHP Based
1011999* - BoidCMS Command Injection Vulnerability (CVE-2023-38836)
1012021* - Grav CMS Directory Traversal Vulnerability (CVE-2024-27921)
1012073* - LibreNMS Cross-Site Scripting Vulnerability (CVE-2024-32479)
1011993* - LibreNMS SQL Injection Vulnerability (CVE-2023-5591)
1012260 - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2024-50352)
1012277 - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2024-53457)
1011975* - WordPress 'Backup Migration' Plugin Command Injection Vulnerability (CVE-2023-7002)
1012067* - WordPress 'Forminator' Plugin SQL Injection Vulnerability (CVE-2024-31077)
1012014* - WordPress 'LayerSlider' Plugin SQL Injection Vulnerability (CVE-2024-2879)
1011968* - WordPress 'LearnPress' Plugin SQL Injection Vulnerability (CVE-2023-6567)
1012005* - WordPress 'Popup Builder' Plugin Cross-Site Scripting Vulnerability (CVE-2023-6000)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
1012045* - WordPress 'WPvivid Backup' Plugin Insecure Deserialization Vulnerability (CVE-2024-3054)
Web Application Tomcat
1012274 - Apache Tomcat Race Condition Vulnerability (CVE-2024-50379 and CVE-2024-56337)
Web Server HTTPS
1012255 - GFI Archiver Telerik Web UI Remote Code Execution Vulnerability (CVE-2024-11948)
1012051* - WordPress Core Cross-Site Scripting Vulnerability (CVE-2024-4439)
Web Server Miscellaneous
1011948* - Ivanti Avalanche Multiple Remote Code Execution Vulnerabilities
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
MyQ Print Server
1012268 - MyQ Print Server Remote Code Execution Vulnerability (CVE-2024-28059)
Progress WhatsUp Gold
1012237 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46905)
Trend Micro Common
1012272 - Trend Micro Multiple Products Path Traversal Vulnerabilities
Web Application PHP Based
1011999* - BoidCMS Command Injection Vulnerability (CVE-2023-38836)
1012021* - Grav CMS Directory Traversal Vulnerability (CVE-2024-27921)
1012073* - LibreNMS Cross-Site Scripting Vulnerability (CVE-2024-32479)
1011993* - LibreNMS SQL Injection Vulnerability (CVE-2023-5591)
1012260 - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2024-50352)
1012277 - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2024-53457)
1011975* - WordPress 'Backup Migration' Plugin Command Injection Vulnerability (CVE-2023-7002)
1012067* - WordPress 'Forminator' Plugin SQL Injection Vulnerability (CVE-2024-31077)
1012014* - WordPress 'LayerSlider' Plugin SQL Injection Vulnerability (CVE-2024-2879)
1011968* - WordPress 'LearnPress' Plugin SQL Injection Vulnerability (CVE-2023-6567)
1012005* - WordPress 'Popup Builder' Plugin Cross-Site Scripting Vulnerability (CVE-2023-6000)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
1012045* - WordPress 'WPvivid Backup' Plugin Insecure Deserialization Vulnerability (CVE-2024-3054)
Web Application Tomcat
1012274 - Apache Tomcat Race Condition Vulnerability (CVE-2024-50379 and CVE-2024-56337)
Web Server HTTPS
1012255 - GFI Archiver Telerik Web UI Remote Code Execution Vulnerability (CVE-2024-11948)
1012051* - WordPress Core Cross-Site Scripting Vulnerability (CVE-2024-4439)
Web Server Miscellaneous
1011948* - Ivanti Avalanche Multiple Remote Code Execution Vulnerabilities
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
OneDev Server
1012270 - OneDev Arbitrary File Read Vulnerability (CVE-2024-45309)
SNMP Client
1012269 - Paessler PRTG Network Monitor Cross-Site Scripting Vulnerability (CVE-2024-12833)
Web Application Tomcat
1012251 - LibreNMS Command Injection Vulnerability (CVE-2024-51092)
Web Proxy Squid
1012273 - Squid Proxy Denial Of Service Vulnerability (CVE-2024-45802)
Web Server HTTPS
1012264 - Veritas Enterprise Vault Cross-Site Scripting Vulnerabilities (CVE-2024-52941) and (CVE-2024-52942)
1012262 - Veritas Enterprise Vault Cross-Site Scripting Vulnerability (CVE-2024-52943)
1012266 - Veritas Enterprise Vault Cross-Site Scripting Vulnerability (CVE-2024-52944)
Web Server Miscellaneous
1012258 - XWiki Information Disclosure Vulnerability (CVE-2023-50719)
Web Server Nagios
1012275 - Nagios XI 'windows-winrm.inc.php' Command Injection Vulnerability
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
OneDev Server
1012270 - OneDev Arbitrary File Read Vulnerability (CVE-2024-45309)
SNMP Client
1012269 - Paessler PRTG Network Monitor Cross-Site Scripting Vulnerability (CVE-2024-12833)
Web Application Tomcat
1012251 - LibreNMS Command Injection Vulnerability (CVE-2024-51092)
Web Proxy Squid
1012273 - Squid Proxy Denial Of Service Vulnerability (CVE-2024-45802)
Web Server HTTPS
1012264 - Veritas Enterprise Vault Cross-Site Scripting Vulnerabilities (CVE-2024-52941) and (CVE-2024-52942)
1012262 - Veritas Enterprise Vault Cross-Site Scripting Vulnerability (CVE-2024-52943)
1012266 - Veritas Enterprise Vault Cross-Site Scripting Vulnerability (CVE-2024-52944)
Web Server Miscellaneous
1012258 - XWiki Information Disclosure Vulnerability (CVE-2023-50719)
Web Server Nagios
1012275 - Nagios XI 'windows-winrm.inc.php' Command Injection Vulnerability
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Endpoint Manager
1012149* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities - 1
1012205* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50326)
WSO2
1012249 - WSO2 Multiple Products Arbitrary File Upload Vulnerability (CVE-2024-7074)
Web Application PHP Based
1012243 - MediaWiki CSS Extension Path Traversal Vulnerability (CVE-2024-47841)
1012261 - WordPress 'Drag and Drop Multiple File Upload - Contact Form 7' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2022-0595)
1012259 - WordPress 'VR Calendar' Plugin Command Injection Vulnerability (CVE-2022-2314)
1012257 - WordPress 'Watu Quiz' Plugin Cross-Site Scripting Vulnerability (CVE-2023-0968)
Web Server HTTPS
1012241 - Cacti Stored Cross-Site Scripting Vulnerabilities (CVE-2024-43364 and CVE-2024-43365)
1012267 - WordPress 'NotificationX' Plugin SQL Injection Vulnerability (CVE-2022-0349)
1012223 - WordPress Core Deserialization of Untrusted Data Remote Code Execution Vulnerability (CVE-2024-31210)
Windows Server DCERPC
1012246 - Microsoft Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability (CVE-2024-38073)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1002815* - Authentication Module - Unix Pluggable Authentication Module
Deep Packet Inspection Rules:
Ivanti Endpoint Manager
1012149* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities - 1
1012205* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50326)
WSO2
1012249 - WSO2 Multiple Products Arbitrary File Upload Vulnerability (CVE-2024-7074)
Web Application PHP Based
1012243 - MediaWiki CSS Extension Path Traversal Vulnerability (CVE-2024-47841)
1012261 - WordPress 'Drag and Drop Multiple File Upload - Contact Form 7' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2022-0595)
1012259 - WordPress 'VR Calendar' Plugin Command Injection Vulnerability (CVE-2022-2314)
1012257 - WordPress 'Watu Quiz' Plugin Cross-Site Scripting Vulnerability (CVE-2023-0968)
Web Server HTTPS
1012241 - Cacti Stored Cross-Site Scripting Vulnerabilities (CVE-2024-43364 and CVE-2024-43365)
1012267 - WordPress 'NotificationX' Plugin SQL Injection Vulnerability (CVE-2022-0349)
1012223 - WordPress Core Deserialization of Untrusted Data Remote Code Execution Vulnerability (CVE-2024-31210)
Windows Server DCERPC
1012246 - Microsoft Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability (CVE-2024-38073)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1002815* - Authentication Module - Unix Pluggable Authentication Module
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Endpoint Manager
1012245 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-34783)
Progress WhatsUp Gold WCF service
1012117* - Progress WhatsUp Gold Directory Traversal Vulnerability (CVE-2024-4883 & CVE-2024-46909)
Veritas Enterprise Vault
1012229* - Veritas Enterprise Vault Remote Code Execution Multiple Vulnerabilities
Web Application PHP Based
1012247 - WordPress 'Super Backup & Clone' Plugin Arbitrary File Upload Vulnerability (CVE-2024-9290)
Webmin
1012254 - Webmin Remote Code Execution Vulnerability (CVE-2024-12828)
Zoho ManageEngine
1012250 - Zoho ManageEngine Analytics Plus Privilege Escalation Vulnerability (CVE-2024-52323)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Ivanti Endpoint Manager
1012245 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-34783)
Progress WhatsUp Gold WCF service
1012117* - Progress WhatsUp Gold Directory Traversal Vulnerability (CVE-2024-4883 & CVE-2024-46909)
Veritas Enterprise Vault
1012229* - Veritas Enterprise Vault Remote Code Execution Multiple Vulnerabilities
Web Application PHP Based
1012247 - WordPress 'Super Backup & Clone' Plugin Arbitrary File Upload Vulnerability (CVE-2024-9290)
Webmin
1012254 - Webmin Remote Code Execution Vulnerability (CVE-2024-12828)
Zoho ManageEngine
1012250 - Zoho ManageEngine Analytics Plus Privilege Escalation Vulnerability (CVE-2024-52323)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Avalanche Remote Control Server
1012176* - Ivanti Avalanche Server-Side Request Forgery Vulnerability (CVE-2024-47008)
Ivanti Endpoint Manager
1012205 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50326)
1012207 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50330)
Mail Server Common
1012185* - Roundcube Webmail Information Disclosure Vulnerability (CVE-2024-42010)
Progress WhatsUp Gold
1012242 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46906)
Veritas Enterprise Vault
1012229 - Veritas Enterprise Vault Remote Code Execution Multiple Vulnerabilities
Web Server HTTPS
1012218* - Centreon SQL Injection Vulnerability (CVE-2024-39841)
1012197* - Centreon SQL Injection Vulnerability (CVE-2024-5725)
1012147 - GitLab Denial of Service Vulnerability (CVE-2023-6502)
1012066* - PHP-CGI Argument Injection Vulnerability (CVE-2024-4577)
Web Server Oracle
1012244 - Oracle WebLogic Server Insecure Deserialization Vulnerability (CVE-2024-21182)
Windows SMB Server
1012219* - Trend Micro Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Ivanti Avalanche Remote Control Server
1012176* - Ivanti Avalanche Server-Side Request Forgery Vulnerability (CVE-2024-47008)
Ivanti Endpoint Manager
1012205 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50326)
1012207 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50330)
Mail Server Common
1012185* - Roundcube Webmail Information Disclosure Vulnerability (CVE-2024-42010)
Progress WhatsUp Gold
1012242 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46906)
Veritas Enterprise Vault
1012229 - Veritas Enterprise Vault Remote Code Execution Multiple Vulnerabilities
Web Server HTTPS
1012218* - Centreon SQL Injection Vulnerability (CVE-2024-39841)
1012197* - Centreon SQL Injection Vulnerability (CVE-2024-5725)
1012147 - GitLab Denial of Service Vulnerability (CVE-2023-6502)
1012066* - PHP-CGI Argument Injection Vulnerability (CVE-2024-4577)
Web Server Oracle
1012244 - Oracle WebLogic Server Insecure Deserialization Vulnerability (CVE-2024-21182)
Windows SMB Server
1012219* - Trend Micro Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Asterisk Manager Interface
1012231 - Identified Asterisk 'Originate' Action With 'SET' Application System Command Execution
Directory Client LDAP
1012240 - Microsoft Windows Active Directory Denial of Service Vulnerability (CVE-2024-49113)
Progress WhatsUp Gold
1012239 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46907)
1012236 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46908)
SolarWinds Access Rights Manager
1012024* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2024-23477 & CVE-2024-23479)
Unix Samba
1012216 - Linux Kernel KSMBD Information Disclosure Vulnerability (CVE-2023-39176)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Asterisk Manager Interface
1012231 - Identified Asterisk 'Originate' Action With 'SET' Application System Command Execution
Directory Client LDAP
1012240 - Microsoft Windows Active Directory Denial of Service Vulnerability (CVE-2024-49113)
Progress WhatsUp Gold
1012239 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46907)
1012236 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46908)
SolarWinds Access Rights Manager
1012024* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2024-23477 & CVE-2024-23479)
Unix Samba
1012216 - Linux Kernel KSMBD Information Disclosure Vulnerability (CVE-2023-39176)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Avalanche Remote Control Server
1012215 - Ivanti Avalanche Directory Traversal Vulnerability (CVE-2024-38652)
Ivanti Endpoint Manager
1012214* - Ivanti Endpoint Manager SQL Injection Vulnerabilities (CVE-2024-32847 and CVE-2024-37376)
1012213 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32841)
JetBrains TeamCity
1012238 - JetBrains TeamCity Stored Cross-Site Scripting Vulnerability (CVE-2024-47951)
Mail Server Postfix
1012235 - Zimbra Collaboration Command Injection Vulnerability (CVE-2024-45519)
Trend Micro OfficeScan
1012202 - Trend Micro Apex One SQL Injection Vulnerability (CVE-2024-39753)
Web Application PHP Based
1012180 - WordPress 'Feed Them Social' Plugin Cross-Site Scripting Vulnerability (CVE-2022-2383)
1012225 - WordPress 'LearnPress' Plugin SQL Injection Vulnerability (CVE-2024-8529)
1012146* - WordPress 'Porto' Theme Local File Inclusion Vulnerability (CVE-2024-3806 and CVE-2024-3807)
Web Server Adobe ColdFusion
1012140* - Adobe ColdFusion Deserialization Of Untrusted Data Vulnerability (CVE-2024-41874)
Web Server HTTPS
1012128* - GitLab Denial of Service Vulnerability (CVE-2024-2874)
1012139* - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-6672)
1012233 - WordPress 'FundEngine Donation and Crowdfunding Platform' SQL Injection Vulnerability (CVE-2022-0788)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Ivanti Avalanche Remote Control Server
1012215 - Ivanti Avalanche Directory Traversal Vulnerability (CVE-2024-38652)
Ivanti Endpoint Manager
1012214* - Ivanti Endpoint Manager SQL Injection Vulnerabilities (CVE-2024-32847 and CVE-2024-37376)
1012213 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32841)
JetBrains TeamCity
1012238 - JetBrains TeamCity Stored Cross-Site Scripting Vulnerability (CVE-2024-47951)
Mail Server Postfix
1012235 - Zimbra Collaboration Command Injection Vulnerability (CVE-2024-45519)
Trend Micro OfficeScan
1012202 - Trend Micro Apex One SQL Injection Vulnerability (CVE-2024-39753)
Web Application PHP Based
1012180 - WordPress 'Feed Them Social' Plugin Cross-Site Scripting Vulnerability (CVE-2022-2383)
1012225 - WordPress 'LearnPress' Plugin SQL Injection Vulnerability (CVE-2024-8529)
1012146* - WordPress 'Porto' Theme Local File Inclusion Vulnerability (CVE-2024-3806 and CVE-2024-3807)
Web Server Adobe ColdFusion
1012140* - Adobe ColdFusion Deserialization Of Untrusted Data Vulnerability (CVE-2024-41874)
Web Server HTTPS
1012128* - GitLab Denial of Service Vulnerability (CVE-2024-2874)
1012139* - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-6672)
1012233 - WordPress 'FundEngine Donation and Crowdfunding Platform' SQL Injection Vulnerability (CVE-2022-0788)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Advanced Message Queuing Protocol (AMQP)
1012050* - SolarWinds Access Rights Manager Remote Code Execution Vulnerability (CVE-2023-40057 & CVE-2024-28075)
Arcserve Unified Data Protection
1012077* - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-26258)
Cleo
1012234 - Cleo Multiple Products Remote Code Execution Vulnerability (CVE-2024-50623)
DHCP Failover Protocol Server
1012136* - Microsoft Windows DHCP Server Denial of Service Vulnerability (CVE-2024-30070)
HP AutoPass License Server
1012228 - HPE AutoPass License Server Authentication Bypass Vulnerability (CVE-2024-51767)
Ivanti Endpoint Manager
1012149* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities - 1
1012211* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32839)
Web Application PHP Based
1012194 - WordPress 'WP Brutal AI' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2023-2606)
Web Server Apache
1012168* - Apache Httpd Server-Side Request Forgery Vulnerability (CVE-2024-38472)
Web Server HTTPS
1012105* - GitLab Regular Expression Denial Of Service Vulnerability (CVE-2024-2878)
1012094* - Progress WhatsUp Gold Server-Side Request Forgery Vulnerability (CVE-2024-5015)
1011902* - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2023-35184 and CVE-2024-23478)
1012224 - WordPress 'Really Simple Security' Plugin Authentication Bypass Vulnerability (CVE-2024-10924)
1012221 - Zimbra Collaboration Reflected Cross-Site Scripting Vulnerability (CVE-2024-50599)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Advanced Message Queuing Protocol (AMQP)
1012050* - SolarWinds Access Rights Manager Remote Code Execution Vulnerability (CVE-2023-40057 & CVE-2024-28075)
Arcserve Unified Data Protection
1012077* - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-26258)
Cleo
1012234 - Cleo Multiple Products Remote Code Execution Vulnerability (CVE-2024-50623)
DHCP Failover Protocol Server
1012136* - Microsoft Windows DHCP Server Denial of Service Vulnerability (CVE-2024-30070)
HP AutoPass License Server
1012228 - HPE AutoPass License Server Authentication Bypass Vulnerability (CVE-2024-51767)
Ivanti Endpoint Manager
1012149* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities - 1
1012211* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32839)
Web Application PHP Based
1012194 - WordPress 'WP Brutal AI' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2023-2606)
Web Server Apache
1012168* - Apache Httpd Server-Side Request Forgery Vulnerability (CVE-2024-38472)
Web Server HTTPS
1012105* - GitLab Regular Expression Denial Of Service Vulnerability (CVE-2024-2878)
1012094* - Progress WhatsUp Gold Server-Side Request Forgery Vulnerability (CVE-2024-5015)
1011902* - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2023-35184 and CVE-2024-23478)
1012224 - WordPress 'Really Simple Security' Plugin Authentication Bypass Vulnerability (CVE-2024-10924)
1012221 - Zimbra Collaboration Reflected Cross-Site Scripting Vulnerability (CVE-2024-50599)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Endpoint Manager
1012214 - Ivanti Endpoint Manager SQL Injection Vulnerabilities (CVE-2024-32847 and CVE-2024-37376)
MSMQ Service
1012227 - Microsoft Windows Message Queuing Service Remote Code Execution Vulnerability (CVE-2024-49122)
Unix Samba
1012198* - Linux Kernel KSMBD Information Disclosure Vulnerability (CVE-2023-4458)
1012210 - Linux Kernel KSMBD Information Disclosure Vulnerability (ZDI-CAN-21598)
Web Application Common
1012078* - Progress MOVEit Transfer Authentication Bypass Vulnerability (CVE-2024-5806)
Web Application PHP Based
1012097* - LibreNMS SQL Injection Vulnerability (CVE-2024-32461)
Web Server HTTPS
1012130* - Cacti Stored Cross-Site Scripting Vulnerability (CVE-2024-31444)
1012222 - Cacti Stored Cross-Site Scripting Vulnerability (CVE-2024-43362)
Windows SMB Server
1012219 - Trend Micro Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Ivanti Endpoint Manager
1012214 - Ivanti Endpoint Manager SQL Injection Vulnerabilities (CVE-2024-32847 and CVE-2024-37376)
MSMQ Service
1012227 - Microsoft Windows Message Queuing Service Remote Code Execution Vulnerability (CVE-2024-49122)
Unix Samba
1012198* - Linux Kernel KSMBD Information Disclosure Vulnerability (CVE-2023-4458)
1012210 - Linux Kernel KSMBD Information Disclosure Vulnerability (ZDI-CAN-21598)
Web Application Common
1012078* - Progress MOVEit Transfer Authentication Bypass Vulnerability (CVE-2024-5806)
Web Application PHP Based
1012097* - LibreNMS SQL Injection Vulnerability (CVE-2024-32461)
Web Server HTTPS
1012130* - Cacti Stored Cross-Site Scripting Vulnerability (CVE-2024-31444)
1012222 - Cacti Stored Cross-Site Scripting Vulnerability (CVE-2024-43362)
Windows SMB Server
1012219 - Trend Micro Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.