24-012 (March 5, 2024)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

CentOS Web Panel
1011900* - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42120)


Jenkins Remoting
1011976* - Jenkins Arbitrary File Read Vulnerability Over WebSocket (CVE-2024-23897)


SolarWinds Orion Platform
1011986 - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-50395)


Unix Samba
1011796* - Linux Kernel KSMBD Denial of Service Vulnerability (CVE-2023-32247)


Web Application PHP Based
1011974* - GLPI SQL Injection Vulnerability (CVE-2023-46727)
1011866* - LibreNMS Cross-Site Scripting Vulnerability (CVE-2023-4347)
1011968 - WordPress 'LearnPress' Plugin SQL Injection Vulnerability (CVE-2023-6567)


Web Server HTTPS
1011979 - Centreon SQL Injection Vulnerability (CVE-2024-0637)
1011984 - Centreon SQL Injection Vulnerability (CVE-2024-23115)
1011983 - Centreon SQL Injection Vulnerability (CVE-2024-23116)
1011982 - Centreon SQL Injection Vulnerability (CVE-2024-23117)
1011981 - Centreon SQL Injection Vulnerability (CVE-2024-23118)
1011980 - Centreon SQL Injection Vulnerability (CVE-2024-23119)


Web Server Miscellaneous
1011971* - Paessler PRTG Network Monitor Remote Code Execution Vulnerability (CVE-2023-32781)


Web Server Oracle
1011989 - Oracle WebLogic Server Information Disclosure Vulnerability (CVE-2024-20931)


Web Server Squid
1011978 - Squid Proxy Denial Of Service Vulnerability (CVE-2023-49285)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.