Trend Micro Security
  Rule Update

23-053 (2023年11月28日)


  概要

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Ceph Messenger Client
1011911 - Linux Kernel Buffer Overflow Vulnerability (CVE-2023-44466)


Elastic Kibana And Elasticsearch
1011909 - Elastic Kibana Upgrade Assistant Telemetry Collector Prototype Pollution Vulnerability


SolarWinds Information Service
1011921 - SolarWinds Network Configuration Manager Remote Code Execution Vulnerability (CVE-2023-33227)


SolarWinds Orion Platform
1011856* - SolarWinds Orion Platform Multiple Incomplete List of Disallowed Inputs Vulnerabilities (CVE-2023-23844 and CVE-2023-40062)


Web Client Common
1011918 - Adobe Acrobat And Reader Remote Code Execution Vulnerability (CVE-2023-44338)


Web Server HTTPS
1011895* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22090) - 1
1011896* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22100) - 1
1011876* - Progress WS_FTP Server Insecure Deserialization Vulnerability (CVE-2023-40044)


Zoho ManageEngine Applications Manager
1011915 - Zoho ManageEngine Applications Manager Cross-Site Scripting Vulnerability (CVE-2023-38333)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.