Name	ips.sig
Version	2.1.572
StoneOS	StoneOS 5.0R4F3.1 or above
Release Date	2024-09-02
New Signature (43)	Rule ID	Rule Name	StonesOS	Detail
	338380	Sophos Firewall User Portal and Webadmin Code Injection Vulnerability (CVE-2022-3236)	5.0R4 or above	click for more information
	338349	Wordpress Plugin JS Help Desk Remote Code Execution Vulnerability (CVE-2024-7094)	5.5R8 or above	click for more information
	338359	Ignite Realtime Openfire Path Traversal Vulnerability (CVE-2023-32315)	5.0R4 or above	click for more information
	338369	Microsoft Exchange Server Arbitrary File Write Vulnerability (CVE-2021-26858)	5.0R4 or above	click for more information
	338366	Google Chrome V8 Heap Corruption Vulnerability (CVE-2020-16009)	5.0R4 or above	click for more information
	338376	Nice Linear eMerge E3-Series OS Command Injection Vulnerability (CVE-2019-7256)	5.5R5 or above	click for more information
	338345	GiveWP PHP Object Injection Vulnerability (CVE-2024-5932)	5.5R5 or above	click for more information
	105546	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	338362	IBM Spectrum Protect Plus uploadHttpsCertificate Command Injection Vulnerability (CVE-2020-4241)	5.0R4 or above	click for more information
	338372	OpenEMR Backup.php Command Injection Vulnerability (CVE-2020-36243)	5.5R5 or above	click for more information
	338383	Oracle Business Intelligence Enterprise Edition Information Disclosure Vulnerability (CVE-2020-14864)	5.0R4 or above	click for more information
	338348	DIAEnergie RecalculateHDMWYC Unauthenticated SQL Injection Vulnerability (CVE-2024-4548)	5.0R4 or above	click for more information
	338368	WordPress Cross Site Request Forgery Remote Code Execution Vulnerability (CVE-2019-9787)	5.0R4 or above	click for more information
	338379	Realtek SDK Management Command Injection Vulnerability (CVE-2021-35395)	5.5R5 or above	click for more information
	338354	Weaver Ecology9 ModeDateService SQL Injection Vulnerability	5.5R8 or above	click for more information
	332462	IBM Spectrum Protect Plus hostname Command Injection Vulnerability (CVE-2020-4211)	5.5R5 or above	click for more information
	338365	Microsoft SharePoint ValidateTokenIssuer Authentication Bypass Vulnerability (CVE-2023-29357)	5.0R4 or above	click for more information
	338375	Netgate pfSense restore_rrddata Command Injection Vulnerability (CVE-2023-27253)	5.0R4 or above	click for more information
	338385	Zoho Desktop Central Authentication Bypass Vulnerability (CVE-2021-44515)	5.0R4 or above	click for more information
	338382	Apache Airflow Experimental API Authentication Bypass Vulnerability (CVE-2020-13927)	5.0R4 or above	click for more information
	......
Updated Signature (14)	Rule ID	Rule Name	StonesOS	Detail
	336802	Sophos Firewall User Portal and Webadmin Authentication Bypass Remote Code Execution Vulnerability (CVE-2022-1040)	5.5R5 or above	Click here for more information
	337849	JetBrains TeamCity Authentication Bypass Vulnerability (CVE-2024-27198)	5.0R4 or above	Click here for more information
	333878	Microsoft Exchange Remote Code Execution Vulnerability (CVE-2021-34473)	5.0R4 or above	Click here for more information
	337846	Ivanti Connect Secure VPN Server-side Request Forge Vulnerability (CVE-2024-21893)	5.0R4 or above	Click here for more information
	337739	Apache Ofbiz 18.12.09 Remote Code Execution Vulnerability (CVE-2023-49070)	5.0R4 or above	Click here for more information
	334123	Sitecore Experience Platform XP PreAuth Deserialization Vulnerability (CVE-2021-42237)	5.0R4 or above	Click here for more information
	337705	Atlassian Confluence Unauthorized Access Vulnerability (CVE-2023-22518)	5.0R4 or above	Click here for more information
	338003	Cisco IOS XE Web UI Privilege Escalation Vulnerability (CVE-2023-20198)	5.0R4 or above	Click here for more information
	333638	Yealink Remote Code Execution Vulnerability (CVE-2021-27561)	5.0R4 or above	Click here for more information
	332445	SaltStack Salt API SSH Client Command Injection Vulnerability (CVE-2020-16846)	5.5R5 or above	Click here for more information
	337867	Atlassian Confluence Arbitrary Command Execution Vulnerability (CVE-2023-22527)	5.0R4 or above	Click here for more information
	337319	CentOS Web Panel Command Injection Vulnerability (CVE-2022-44877)	5.0R4 or above	Click here for more information
	334257	Nagios XI WatchGuard Wizard Watchguard.inc.php Command Injection Vulnerability (CVE-2021-37346)	5.5R5 or above	Click here for more information
	716907	Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2023-46604)	5.5R5 or above	Click here for more information