25-002 (January 14, 2025)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Ivanti Avalanche Remote Control Server
1012176* - Ivanti Avalanche Server-Side Request Forgery Vulnerability (CVE-2024-47008)


Ivanti Endpoint Manager
1012205 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50326)
1012207 - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-50330)


Mail Server Common
1012185* - Roundcube Webmail Information Disclosure Vulnerability (CVE-2024-42010)


Progress WhatsUp Gold
1012242 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-46906)


Veritas Enterprise Vault
1012229 - Veritas Enterprise Vault Remote Code Execution Multiple Vulnerabilities


Web Server HTTPS
1012218* - Centreon SQL Injection Vulnerability (CVE-2024-39841)
1012197* - Centreon SQL Injection Vulnerability (CVE-2024-5725)
1012147 - GitLab Denial of Service Vulnerability (CVE-2023-6502)
1012066* - PHP-CGI Argument Injection Vulnerability (CVE-2024-4577)


Web Server Oracle
1012244 - Oracle WebLogic Server Insecure Deserialization Vulnerability (CVE-2024-21182)


Windows SMB Server
1012219* - Trend Micro Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.