Rule Update

23-030 (July 11, 2023)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Advanced Message Queuing Protocol (AMQP)
1011799 - SolarWinds Network Performance Monitor Insecure Deserialization Vulnerability (CVE-2022-47504)


Unix Samba
1011797 - Samba Out-Of-Bounds Read Information Disclosure Vulnerability (CVE-2022-32742)


Web Application Common
1011809 - SPIP Remote Code Execution Vulnerability (CVE-2023-27372)
1011743* - pgAdmin Import Servers Directory Traversal Vulnerability (CVE-2023-0241)


Web Client Internet Explorer/Edge
1010857* - Microsoft Internet Explorer Memory Corruption Vulnerability (CVE-2021-26411)


Web Server Common
1011806 - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2023-34225)


Web Server HTTPS
1011794 - Contec CONPROSYS HMI System SQL Injection Vulnerability (CVE-2023-29154)
1011811 - Pentaho Business Analytics Server Remote Code Execution Vulnerability (CVE-2022-43769 & CVE-2022-43939)
1011766* - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-32532)
1011773* - Trend Micro Apex Central SQL Injection Vulnerability (CVE-2023-32529)


Web Server SharePoint
1011807 - Microsoft SharePoint Information Disclosure Vulnerability (CVE-2023-24954)
1011816 - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2023-33157)


Integrity Monitoring Rules:

1002851* - Application - Apache HTTP Server


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.