Rule Update

24-041 (September 3, 2024)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Apache Nifi
1012122 - Apache NiFi Stored Cross-Site Scripting Vulnerability (CVE-2024-37389)


DHCP Failover Protocol Server
1012136 - Microsoft Windows DHCP Server Denial of Service Vulnerability (CVE-2024-30070)


Openfire Jabber Server
1011841* - Openfire Authentication Bypass Vulnerability (CVE-2023-32315)


Progress Telerik Reporting
1012042* - Progress Telerik Report Server Insecure Deserialization Vulnerability (CVE-2024-1800)


Web Application PHP Based
1012104 - phpMyAdmin SQL Injection Vulnerability (CVE-2019-11768)


Web Client Common
1012109* - Microsoft Windows LNK NTLM Spoofing Vulnerability Over HTTP (CVE-2024-30081)


Web Server HTTPS
1012128 - GitLab Denial of Service Vulnerability (CVE-2024-2874)
1012119 - Progress WhatsUp Gold Denial Of Service Vulnerability (CVE-2024-5011)


Web Server Miscellaneous
1012055* - Atlassian Confluence Data Center and Server Remote Code Execution Vulnerability (CVE-2024-21683)
1012033* - XWiki Code Injection Vulnerability (CVE-2024-31465)


Web Server Oracle
1010171* - Oracle Weblogic Server Insecure Deserialization Vulnerability (CVE-2020-2551)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.