IPS Signature Database Update

Name ips.sig
Version 3.0.222
StoneOS Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above
Release Date 2024-09-02
New Signature
(40)
Rule ID Rule Name StoneOS Detail
338380 Sophos Firewall User Portal and Webadmin Code Injection Vulnerability (CVE-2022-3236) 5.0R4 or above click for more information
338349 Wordpress Plugin JS Help Desk Remote Code Execution Vulnerability (CVE-2024-7094) 5.5R8 or above click for more information
338359 Ignite Realtime Openfire Path Traversal Vulnerability (CVE-2023-32315) 5.0R4 or above click for more information
338369 Microsoft Exchange Server Arbitrary File Write Vulnerability (CVE-2021-26858) 5.0R4 or above click for more information
338366 Google Chrome V8 Heap Corruption Vulnerability (CVE-2020-16009) 5.0R4 or above click for more information
338376 Nice Linear eMerge E3-Series OS Command Injection Vulnerability (CVE-2019-7256) 5.5R5 or above click for more information
338345 GiveWP PHP Object Injection Vulnerability (CVE-2024-5932) 5.5R5 or above click for more information
338362 IBM Spectrum Protect Plus uploadHttpsCertificate Command Injection Vulnerability (CVE-2020-4241) 5.0R4 or above click for more information
338372 OpenEMR Backup.php Command Injection Vulnerability (CVE-2020-36243) 5.5R5 or above click for more information
338383 Oracle Business Intelligence Enterprise Edition Information Disclosure Vulnerability (CVE-2020-14864) 5.0R4 or above click for more information
338348 DIAEnergie RecalculateHDMWYC Unauthenticated SQL Injection Vulnerability (CVE-2024-4548) 5.0R4 or above click for more information
338368 WordPress Cross Site Request Forgery Remote Code Execution Vulnerability (CVE-2019-9787) 5.0R4 or above click for more information
338379 Realtek SDK Management Command Injection Vulnerability (CVE-2021-35395) 5.5R5 or above click for more information
338354 Weaver Ecology9 ModeDateService SQL Injection Vulnerability 5.5R8 or above click for more information
332462 IBM Spectrum Protect Plus hostname Command Injection Vulnerability (CVE-2020-4211) 5.5R5 or above click for more information
338365 Microsoft SharePoint ValidateTokenIssuer Authentication Bypass Vulnerability (CVE-2023-29357) 5.0R4 or above click for more information
338375 Netgate pfSense restore_rrddata Command Injection Vulnerability (CVE-2023-27253) 5.0R4 or above click for more information
338385 Zoho Desktop Central Authentication Bypass Vulnerability (CVE-2021-44515) 5.0R4 or above click for more information
338382 Apache Airflow Experimental API Authentication Bypass Vulnerability (CVE-2020-13927) 5.0R4 or above click for more information
338351 Yonyou CRM help.php Arbitrary File Read Vulnerability 5.5R8 or above click for more information
......
Updated Signature
(15)
Rule ID Rule Name StoneOS Detail
336802 Sophos Firewall User Portal and Webadmin Authentication Bypass Remote Code Execution Vulnerability (CVE-2022-1040) 5.5R5 or above Click here for more information
337849 JetBrains TeamCity Authentication Bypass Vulnerability (CVE-2024-27198) 5.0R4 or above Click here for more information
333878 Microsoft Exchange Remote Code Execution Vulnerability (CVE-2021-34473) 5.0R4 or above Click here for more information
337846 Ivanti Connect Secure VPN Server-side Request Forge Vulnerability (CVE-2024-21893) 5.0R4 or above Click here for more information
332445 SaltStack Salt API SSH Client Command Injection Vulnerability (CVE-2020-16846) 5.5R5 or above Click here for more information
337739 Apache Ofbiz 18.12.09 Remote Code Execution Vulnerability (CVE-2023-49070) 5.0R4 or above Click here for more information
333758 Suspected APT32/OceanLotus Activity 5.5R5 or above Click here for more information
334123 Sitecore Experience Platform XP PreAuth Deserialization Vulnerability (CVE-2021-42237) 5.0R4 or above Click here for more information
337705 Atlassian Confluence Unauthorized Access Vulnerability (CVE-2023-22518) 5.0R4 or above Click here for more information
338003 Cisco IOS XE Web UI Privilege Escalation Vulnerability (CVE-2023-20198) 5.0R4 or above Click here for more information
333638 Yealink Remote Code Execution Vulnerability (CVE-2021-27561) 5.0R4 or above Click here for more information
337319 CentOS Web Panel Command Injection Vulnerability (CVE-2022-44877) 5.0R4 or above Click here for more information
337867 Atlassian Confluence Arbitrary Command Execution Vulnerability (CVE-2023-22527) 5.0R4 or above Click here for more information
716907 Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2023-46604) 5.5R5 or above Click here for more information
334257 Nagios XI WatchGuard Wizard Watchguard.inc.php Command Injection Vulnerability (CVE-2021-37346) 5.5R5 or above Click here for more information