概要

* は既存ルールの新バージョンを示します。

DPI(Deep Packet Inspection) ルール:

Webクライアント 共通
1009120 - Adobe Acrobat And Reader XFA 'Submission Handler' Privilege Escalation Vulnerability (CVE-2018-4995)
1008984 - Foxit Reader JPXDecode stream Out-Of-Bounds Write Remote Code Execution Vulnerability
1008742 - IBM Notes Remote Denial Of Service Vulnerability (CVE-2017-1130)
1009088* - Microsoft Windows Multiple Elevation Of Privilege Vulnerabilities (May 2018)


Webクライアント Internet Explorer/Edge
1009123 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0981)
1009122 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-0987)
1009121 - Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CVE-2018-1000)


Webサーバ 共通
1005839* - Identified XML External Entity Injection In HTTP Request


変更監視(Integrity Monitoring)ルール:

1009060 - Kubernetes Cluster Master


セキュリティログ監視(Log Inspection)ルール:

1002798* - Database Server - PostgreSQL
1009105 - Kubernetes
1002835* - Web Server - Web Access Events