Rule Update
22-052 (October 25, 2022)
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Directory Server LDAP
1011531* - Microsoft Windows Active Directory Certificate Services Privilege Escalation Vulnerability (CVE-2022-34691)
JBoss Remoting Connector Unified Invoker
1011570 - Red Hat JBoss Enterprise Application Platform Remote Code Execution Vulnerability
WSO2 Enterprise Integrator
1011580 - WSO2 Enterprise Integrator Cross-Site Scripting Vulnerability (CVE-2022-39810)
Web Application Common
1011577 - Fastify Denial Of Service Vulnerability (CVE-2022-39288)
Web Application PHP Based
1011574 - WordPress 'Ketchup Restaurant Reservations' Plugin Cross-Site Scripting Vulnerability (CVE-2022-2753)
1011561* - WordPress 'Ketchup Restaurant Reservations' Plugin SQL Injection Vulnerability (CVE-2022-2754)
1011579 - WordPress 'Litespeed' Plugin Cross-Site Scripting Vulnerability (CVE-2020-29172)
Web Client Common
1011576 - Chromium Based Browsers Use After Free Vulnerability (CVE-2022-3038)
Web Server Common
1011575 - Apache Commons Text Remote Code Execution Vulnerability (CVE-2022-42889)
Web Server Miscellaneous
1011581 - Apache JSPWiki 'UserPreferences.jsp' Cross-Site Request Forgery Vulnerability (CVE-2022-28731)
1011572 - Vm2 Sandbox Remote Code Execution Vulnerability (CVE-2021-23449)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Directory Server LDAP
1011531* - Microsoft Windows Active Directory Certificate Services Privilege Escalation Vulnerability (CVE-2022-34691)
JBoss Remoting Connector Unified Invoker
1011570 - Red Hat JBoss Enterprise Application Platform Remote Code Execution Vulnerability
WSO2 Enterprise Integrator
1011580 - WSO2 Enterprise Integrator Cross-Site Scripting Vulnerability (CVE-2022-39810)
Web Application Common
1011577 - Fastify Denial Of Service Vulnerability (CVE-2022-39288)
Web Application PHP Based
1011574 - WordPress 'Ketchup Restaurant Reservations' Plugin Cross-Site Scripting Vulnerability (CVE-2022-2753)
1011561* - WordPress 'Ketchup Restaurant Reservations' Plugin SQL Injection Vulnerability (CVE-2022-2754)
1011579 - WordPress 'Litespeed' Plugin Cross-Site Scripting Vulnerability (CVE-2020-29172)
Web Client Common
1011576 - Chromium Based Browsers Use After Free Vulnerability (CVE-2022-3038)
Web Server Common
1011575 - Apache Commons Text Remote Code Execution Vulnerability (CVE-2022-42889)
Web Server Miscellaneous
1011581 - Apache JSPWiki 'UserPreferences.jsp' Cross-Site Request Forgery Vulnerability (CVE-2022-28731)
1011572 - Vm2 Sandbox Remote Code Execution Vulnerability (CVE-2021-23449)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.