22-010 (February 22, 2022)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Unix Samba
1011294* - Samba AppleDouble Remote Code Execution Vulnerability (CVE-2021-44142)


Web Application PHP Based
1011252* - WordPress 'Catch Themes Demo Import' Plugin Remote Code Execution Vulnerability (CVE-2021-39352)
1011261* - WordPress 'DZS Zoomsounds' Plugin Directory Traversal Vulnerability (CVE-2021-39316)


Web Client Common
1011277* - Adobe Acrobat And Reader Multiple Security Vulnerabilities (APSB22-01)
1011300 - Chromium Based Browsers Out Of Bounds Write Vulnerability (CVE-2021-30547)


Web Server Common
1011242* - Apache Log4j Remote Code Execution Vulnerability (CVE-2021-44228)
1011265* - Apache Log4j Remote Code Execution Vulnerability (CVE-2021-45046)


Web Server Miscellaneous
1011304 - Atlassian Jira Reflected Cross-Site Scripting Vulnerability (CVE-2021-43942)
1011301 - Jenkins 'Matrix Project' Plugin Cross-Site Scripting Vulnerability (CVE-2022-20615)


Web Server SharePoint
1011310 - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2022-22005)


Zoho ManageEngine
1011267 - Zoho ManageEngine Network Configuration Manager Command Injection Vulnerability (CVE-2021-43319)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.