Rule Update

24-046 (October 1, 2024)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Arcserve Unified Data Protection
1012077* - Arcserve Unified Data Protection Remote Code Execution Vulnerability (CVE-2023-26258)


Ivanti Endpoint Manager
1012154 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32842)
1012155 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32845)
1012156 - Ivanti Endpoint Manager XML External Entity Information Disclosure Vulnerability (CVE-2024-37397)


SolarWinds Access Rights Manager
1012124 - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2024-28992)


Web Application PHP Based
1012125* - OpenCart Directory Traversal Vulnerability (CVE-2024-21518)


Web Server HTTPS
1012068* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities (CVE-2024-29828 & CVE-2024-29829)
1012049* - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2024-23478)


Web Server Oracle
1012098* - Oracle WebLogic Server Information Disclosure Vulnerability (CVE-2024-21006)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.

Featured Stories