Rule Update
DPIルール他更新情報:22-017(2022年4月5日)
概要
* は既存ルールの新バージョンを示します。
DPI(Deep Packet Inspection) ルール:
OpenSSLクライアント
1011370 - OpenSSL Client Denial Of Service Vulnerability (CVE-2022-0778)
Webアプリケーション 共通
1011364 - Dolibarr ERP And CRM Code Injection Vulnerability (CVE-2022-0819)
Webアプリケーション PHP
1011358* - WordPress 'CP Blocks' Plugin Cross-Site Scripting Vulnerability (CVE-2022-0448)
1011302* - WordPress 'Contact Form 7' plugin Unauthenticated Stored Cross-Site Scripting Vulnerability (CVE-2021-25080)
1011356 - WordPress 'Header Footer Code Manager' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-0710)
1011353 - WordPress 'MasterStudy LMS' Plugin Admin Account Creation Vulnerability (CVE-2022-0441)
1011375 - WordPress 'Photoswipe Masonry Gallery' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2022-0750)
1011352* - WordPress 'Titan Labs Security Audit' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2021-24901)
1011340* - WordPress 'WP Statistics' Plugin Blind SQL Injection Vulnerability (CVE-2022-25148)
Webクライアント 共通
1011367 - Chromium Based Browsers Incorrect Authorization Vulnerability (CVE-2022-0309)
1011368 - Chromium Based Browsers Use After Free Vulnerability (CVE-2022-0297)
1011374 - Chromium Use After Free Vulnerability (CVE-2022-0609)
Webクライアント Mozilla Firefox
1011361 - Mozilla Firefox Use-After-Free Remote Code Execution Vulnerability (CVE-2022-26381)
Webサーバ 共通
1011242* - Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)
1011265* - Apache Log4j Remote Code Execution Vulnerability (CVE-2021-45046)
1011344* - BMC Track-It Unrestricted File Upload Remote Code Execution Vulnerability (CVE-2021-35002)
1010175* - Cross-Site Scripting (XSS) Decoder
1011372* - Spring Framework "Spring4Shell" Remote Code Execution Vulnerability (CVE-2022-22965)
1010721* - VMware Multiple Products Command Injection Vulnerability (CVE-2020-4006)
Webサーバ その他
1011376 - VMware Spring Cloud Gateway Remote Code Execution Vulnerability (CVE-2022-22947)
変更監視(Integrity Monitoring)ルール:
今回のセキュリティアップデートには、新規の変更監視ルールおよび更新は含まれておりません。
セキュリティログ監視(Log Inspection)ルール:
1002831* - Unix - Syslog
DPI(Deep Packet Inspection) ルール:
OpenSSLクライアント
1011370 - OpenSSL Client Denial Of Service Vulnerability (CVE-2022-0778)
Webアプリケーション 共通
1011364 - Dolibarr ERP And CRM Code Injection Vulnerability (CVE-2022-0819)
Webアプリケーション PHP
1011358* - WordPress 'CP Blocks' Plugin Cross-Site Scripting Vulnerability (CVE-2022-0448)
1011302* - WordPress 'Contact Form 7' plugin Unauthenticated Stored Cross-Site Scripting Vulnerability (CVE-2021-25080)
1011356 - WordPress 'Header Footer Code Manager' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2022-0710)
1011353 - WordPress 'MasterStudy LMS' Plugin Admin Account Creation Vulnerability (CVE-2022-0441)
1011375 - WordPress 'Photoswipe Masonry Gallery' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2022-0750)
1011352* - WordPress 'Titan Labs Security Audit' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2021-24901)
1011340* - WordPress 'WP Statistics' Plugin Blind SQL Injection Vulnerability (CVE-2022-25148)
Webクライアント 共通
1011367 - Chromium Based Browsers Incorrect Authorization Vulnerability (CVE-2022-0309)
1011368 - Chromium Based Browsers Use After Free Vulnerability (CVE-2022-0297)
1011374 - Chromium Use After Free Vulnerability (CVE-2022-0609)
Webクライアント Mozilla Firefox
1011361 - Mozilla Firefox Use-After-Free Remote Code Execution Vulnerability (CVE-2022-26381)
Webサーバ 共通
1011242* - Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)
1011265* - Apache Log4j Remote Code Execution Vulnerability (CVE-2021-45046)
1011344* - BMC Track-It Unrestricted File Upload Remote Code Execution Vulnerability (CVE-2021-35002)
1010175* - Cross-Site Scripting (XSS) Decoder
1011372* - Spring Framework "Spring4Shell" Remote Code Execution Vulnerability (CVE-2022-22965)
1010721* - VMware Multiple Products Command Injection Vulnerability (CVE-2020-4006)
Webサーバ その他
1011376 - VMware Spring Cloud Gateway Remote Code Execution Vulnerability (CVE-2022-22947)
変更監視(Integrity Monitoring)ルール:
今回のセキュリティアップデートには、新規の変更監視ルールおよび更新は含まれておりません。
セキュリティログ監視(Log Inspection)ルール:
1002831* - Unix - Syslog