Rule Update
23-030 (July 11, 2023)
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Advanced Message Queuing Protocol (AMQP)
1011799 - SolarWinds Network Performance Monitor Insecure Deserialization Vulnerability (CVE-2022-47504)
Unix Samba
1011797 - Samba Out-Of-Bounds Read Information Disclosure Vulnerability (CVE-2022-32742)
Web Application Common
1011809 - SPIP Remote Code Execution Vulnerability (CVE-2023-27372)
1011743* - pgAdmin Import Servers Directory Traversal Vulnerability (CVE-2023-0241)
Web Client Internet Explorer/Edge
1010857* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2021-26411)
Web Server Common
1011806 - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2023-34225)
Web Server HTTPS
1011794 - Contec CONPROSYS HMI System SQL Injection Vulnerability (CVE-2023-29154)
1011811 - Pentaho Business Analytics Server Remote Code Execution Vulnerability (CVE-2022-43769 & CVE-2022-43939)
1011766* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-32532)
1011773* - Trend Micro Apex Central SQL Injection Vulnerability (CVE-2023-32529)
Web Server SharePoint
1011807 - Microsoft SharePoint Information Disclosure Vulnerability (CVE-2023-24954)
1011816 - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2023-33157)
Integrity Monitoring Rules:
1002851* - Application - Apache HTTP Server
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Advanced Message Queuing Protocol (AMQP)
1011799 - SolarWinds Network Performance Monitor Insecure Deserialization Vulnerability (CVE-2022-47504)
Unix Samba
1011797 - Samba Out-Of-Bounds Read Information Disclosure Vulnerability (CVE-2022-32742)
Web Application Common
1011809 - SPIP Remote Code Execution Vulnerability (CVE-2023-27372)
1011743* - pgAdmin Import Servers Directory Traversal Vulnerability (CVE-2023-0241)
Web Client Internet Explorer/Edge
1010857* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2021-26411)
Web Server Common
1011806 - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2023-34225)
Web Server HTTPS
1011794 - Contec CONPROSYS HMI System SQL Injection Vulnerability (CVE-2023-29154)
1011811 - Pentaho Business Analytics Server Remote Code Execution Vulnerability (CVE-2022-43769 & CVE-2022-43939)
1011766* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-32532)
1011773* - Trend Micro Apex Central SQL Injection Vulnerability (CVE-2023-32529)
Web Server SharePoint
1011807 - Microsoft SharePoint Information Disclosure Vulnerability (CVE-2023-24954)
1011816 - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2023-33157)
Integrity Monitoring Rules:
1002851* - Application - Apache HTTP Server
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.