25-011 (March 18, 2025)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Directory Server LDAP
1012309 - OpenLDAP SQL Injection Vulnerability (CVE-2022-29155)


Ivanti Endpoint Manager
1012149* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities - 1
1012253* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-32848)
1012283 - Ivanti Endpoint Manager Untrusted Search Path Vulnerability (CVE-2024-13158)


SolarWinds Orion Platform
1012316 - SolarWinds Orion Platform Server-Side Request Forgery Vulnerability (CVE-2024-52606)


Web Application PHP Based
1012308 - WordPress 'Hunk Companion' Plugin Broken Access Control Vulnerability (CVE-2024-11972)
1012313 - WordPress 'Ultimate Exporter' Plugin Command Injection Vulnerability (CVE-2024-56278)


Web Client HTTPS
1012220 - Ivanti Endpoint Manager Multiple Directory Traversal Vulnerabilities


Web Server HTTPS
1012292 - Zabbix SQL Injection Vulnerability (CVE-2024-42327)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.