IPS Signature Database Update

Name ips.sig
Version 3.0.241
StoneOS Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above
Release Date 2025-01-13
New Signature
(17)		 Rule ID Rule Name StoneOS Detail
338639 TOTOLINK Remote Code Execution Vulnerability (CVE-2024-51228) 5.5R5 or above click for more information
338636 Yonyou NC-Cloud getStaffInfo SQL Injection Vulnerability 5.5R5 or above click for more information
338627 XStream 1.4.17 Deserialization Remote Code Execution Vulnerability (CVE-2021-39139) 5.5R8 or above click for more information
338637 Weaver e-Bridge checkMobile SQL Injection Vulnerability 5.5R5 or above click for more information
338634 FasterXML Jackson-databind Remote Code Execution Vulnerability (CVE-2020-9548) 5.0R4 or above click for more information
338635 Yonyou U8-Cloud ReleaseRepMngAction SQL Injection Vulnerability 5.5R5 or above click for more information
338632 PostgreSQL JDBC Drive Remote Code Execution Vulnerability (CVE-2022-21724) 5.0R4 or above click for more information
105669 DNS Tunnel Detection - iodine 5.5R5 or above click for more information
338642 Digital China DCN online_list.php Arbitrary File Read Vulnerability 5.0R4 or above click for more information
338633 FasterXML Jackson-databind Remote Code Execution Vulnerability (CVE-2020-9547) 5.0R4 or above click for more information
338630 Apache Tomcat S2-013 Remote Code Execution Vulnerability (CVE-2013-1966) 5.0R4 or above click for more information
338640 Mlflow Arbitrary File Read Vulnerability (CVE-2024-8859) 5.0R4 or above click for more information
338631 PostgreSQL JDBC Drive Remote Code Execution Vulnerability (CVE-2022-21724) 5.0R4 or above click for more information
338641 Landry Multiple Endpoint Arbitray File Read Vulnerability 5.5R5 or above click for more information
338628 Spring Boot Actuator heapdump API Unauthorized Access vulnerability 5.0R4 or above click for more information
338638 Weaver e-Bridge addTasteJsonp SQL Injection Vulnerability 5.5R5 or above click for more information
338629 Spring Boot Actuator Unauthorized Access Vulnerability 5.0R4 or above click for more information
Updated Signature
(2)		 Rule ID Rule Name StoneOS Detail
320591 Apache Tomcat HTTP PUT Remote Code Execution Vulnerability (CVE-2017-12617) 5.5R8 or above Click here for more information
320518 Apache Tomcat HTTP PUT Windows Remote Code Execution Vulnerability (CVE-2017-12615) 5.5R8 or above Click here for more information