IPS Signature Database Update

Name ips.sig
Version 3.0.231
StoneOS Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above
Release Date 2024-11-04
New Signature
(15)
Rule ID Rule Name StoneOS Detail
338488 Nagios XI SQL Injection Vulnerability (CVE-2023-40931) 5.0R4 or above click for more information
338498 HIKVISION iSecure Center uploadAllPackage Interface Arbitrary File Upload Vulnerability 5.0R4 or above click for more information
338489 Pfsense Cross-Site Scripting Vulnerability (CVE-2024-46538) 5.5R5 or above click for more information
338499 1Panel SQL Injection Vulnerability (CVE-2024-39907) 5.5R8 or above click for more information
338486 IBM Security Verify Access Open Redirect Vulnerability (CVE-2024-35133) 5.0R4 or above click for more information
338496 HIKVISION IVMS-8700 IWsBaseService Interface Information Leakage Vulnerability 5.0R4 or above click for more information
338487 Keycloak Broken Access Control Vulnerability (CVE-2024-3656) 5.0R4 or above click for more information
338497 HIKVISION iSecure Center download Interface Arbitrary File Reading Vulnerability 5.0R4 or above click for more information
338494 ABB Cylon Aspect 3.08.01 persistenceManagerAjax.php Command Injection Vulnerability 5.5R5 or above click for more information
338495 HIKVISION iSecure Center detection Interface Remote Code Execution Vulnerability 5.5R5 or above click for more information
338492 WordPress WP-Advanced Search SQL Injection Vulnerability (CVE-2024-9796) 5.0R4 or above click for more information
338493 Hoteldruid v3.0.5 SQL Injection Vulnerability (CVE-2023-43373) 5.5R5 or above click for more information
338490 Sourcecodester Packers and Movers Management System v1.0 SQL Injection Vulnerability (CVE-2024-48427) 5.5R5 or above click for more information
338500 Apache Kafka UI Remote Code Execution Vulnerability (CVE-2024-32030) 5.0R4 or above click for more information
338491 Time Clock Remote Code Execution Vulnerability (CVE-2024-9593) 5.0R4 or above click for more information
Updated Signature
(2)
Rule ID Rule Name StoneOS Detail
338474 Grafana Post-Auth DuckDB SQL Injection Vulnerability (CVE-2024-9264) 5.0R4 or above Click here for more information
338478 GutenKit Unauthenticated Arbitrary File Upload Vulnerability (CVE-2024-9234) 5.0R4 or above Click here for more information