Rule Update
24-054 (2024年11月19日)
2024年11月19日
概要
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
CyberPanel
1012196 - CyberPanel Remote Code Execution Vulnerability (CVE-2024-51567)
Ivanti Endpoint Manager
1012155* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32845)
JetBrains TeamCity
1012199 - JetBrains TeamCity Stored Cross-Site Scripting Vulnerability (CVE-2024-47950)
Mail Server Common
1012185 - Roundcube Webmail Information Disclosure Vulnerability (CVE-2024-42010)
1012143 - Roundcube Webmail Stored Cross-Site Scripting Vulnerability (CVE-2024-37383)
PaperCut
1012192 - PaperCut NG and MF Authentication Bypass Vulnerability (CVE-2024-1222)
Ray Framework
1012150* - Ray Command Injection Vulnerability (CVE-2023-6019)
SolarWinds Dameware Web Help Desk
1012127* - SolarWinds Dameware Web Help Desk Multiple Deserialization Remote Code Execution Vulnerabilities (CVE-2024-28986 and CVE-2024-28988)
Web Application PHP Based
1012158* - WordPress 'Email Subscribers' Plugin SQL Injection Vulnerability (CVE-2024-2876)
1012106* - WordPress 'Hash Form' Plugin Arbitrary File Upload Vulnerability (CVE-2024-5084)
1012190 - WordPress 'LearnPress' Plugin SQL Injection Vulnerability (CVE-2024-8522)
Web Server Adobe ColdFusion
1012140* - Adobe ColdFusion Deserialization Of Untrusted Data Vulnerability (CVE-2024-41874)
Web Server HTTPS
1012110* - GeoServer Remote Code Execution Vulnerability (CVE-2024-36401)
1012112* - GitLab Denial Of Service Vulnerability (CVE-2024-2651)
Zoho ManageEngine
1012179 - Zoho ManageEngine Multiple Products SQL Injection Vulnerability (CVE-2024-6748)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1002835* - Web Server - Web Access Events
Deep Packet Inspection Rules:
CyberPanel
1012196 - CyberPanel Remote Code Execution Vulnerability (CVE-2024-51567)
Ivanti Endpoint Manager
1012155* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32845)
JetBrains TeamCity
1012199 - JetBrains TeamCity Stored Cross-Site Scripting Vulnerability (CVE-2024-47950)
Mail Server Common
1012185 - Roundcube Webmail Information Disclosure Vulnerability (CVE-2024-42010)
1012143 - Roundcube Webmail Stored Cross-Site Scripting Vulnerability (CVE-2024-37383)
PaperCut
1012192 - PaperCut NG and MF Authentication Bypass Vulnerability (CVE-2024-1222)
Ray Framework
1012150* - Ray Command Injection Vulnerability (CVE-2023-6019)
SolarWinds Dameware Web Help Desk
1012127* - SolarWinds Dameware Web Help Desk Multiple Deserialization Remote Code Execution Vulnerabilities (CVE-2024-28986 and CVE-2024-28988)
Web Application PHP Based
1012158* - WordPress 'Email Subscribers' Plugin SQL Injection Vulnerability (CVE-2024-2876)
1012106* - WordPress 'Hash Form' Plugin Arbitrary File Upload Vulnerability (CVE-2024-5084)
1012190 - WordPress 'LearnPress' Plugin SQL Injection Vulnerability (CVE-2024-8522)
Web Server Adobe ColdFusion
1012140* - Adobe ColdFusion Deserialization Of Untrusted Data Vulnerability (CVE-2024-41874)
Web Server HTTPS
1012110* - GeoServer Remote Code Execution Vulnerability (CVE-2024-36401)
1012112* - GitLab Denial Of Service Vulnerability (CVE-2024-2651)
Zoho ManageEngine
1012179 - Zoho ManageEngine Multiple Products SQL Injection Vulnerability (CVE-2024-6748)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1002835* - Web Server - Web Access Events