23-019 (May 2, 2023)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

DCERPC Services
1011660* - Linux Kernel KSMBD Denial Of Service Vulnerability (CVE-2023-0210)


Redis Server
1011555* - Redis Integer Overflow Vulnerability (CVE-2022-35951)


Web Application PHP Based
1011714 - WordPress 'Paid Memberships Pro' Plugin Cross-Site Scripting Vulnerability (CVE-2022-4830)


Web Client Common
1011725 - Microsoft Windows Contacts Remote Code Execution Vulnerability (CVE-2022-44666)


Web Client HTTPS
1011699* - GitLab Remote Code Execution Vulnerability (CVE-2022-2884)
1011684* - GitLab Remote Code Execution Vulnerability (CVE-2022-2992)


Web Server HTTPS
1011565* - Centreon 'Poller Broker' SQL Injection Vulnerabilities (CVE-2022-42424 and CVE-2022-42425)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

1011728 - Microsoft Azure Active Directory Password Protection