24-032 (July 2, 2024)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Arcserve Unified Data Protection
1012077 - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-26258)


Django Server
1012022* - Django Denial Of Service Vulnerability (CVE-2023-46695)


Nextgen Mirth Connect
1012008* - Nextgen Mirth Connect Insecure Deserialization Vulnerability (CVE-2023-43208)


Solr Service
1012028* - Apache Solr Arbitrary File Upload Vulnerability (CVE-2023-50386)


Unix Samba
1012023* - Linux Kernel KSMBD Buffer Overflow Vulnerability (CVE-2023-52440)
1012076 - Linux Kernel KSMBD Information Disclosure Vulnerability (CVE-2023-52442)


Varnish Cache
1012056 - Varnish Cache Denial of Service Vulnerability (CVE-2024-30156)


Web Application Common
1012078 - Progress MOVEit Transfer Authentication Bypass Vulnerability (CVE-2024-5806)
1012079 - SolarWinds Serv-U Directory Traversal Vulnerability (CVE-2024-28995)


Web Application PHP Based
1012045* - WordPress 'WPvivid Backup' Plugin Insecure Deserialization Vulnerability (CVE-2024-3054)


Web Server HTTPS
1011982* - Centreon SQL Injection Vulnerability (CVE-2024-23117)
1012049 - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2024-23478)


Web Server SharePoint
1012044* - Microsoft SharePoint Server Information Disclosure Vulnerability (CVE-2024-30043)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.