Rule Update

23-015 (April 11, 2023)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Redis Server
1011555* - Redis Integer Overflow Vulnerability (CVE-2022-35951)


Web Application PHP Based
1011689* - LibreNMS Cross-Site Scripting Vulnerability (CVE-2022-4069)


Web Client HTTPS
1011684* - GitLab Remote Code Execution Vulnerability (CVE-2022-2992)


Web Server Common
1011690* - dotCMS Directory Traversal Vulnerability (CVE-2022-45783)


Windows SMB Server
1011717 - Linux Kernel KSMBD Use After Free Vulnerability (CVE-2022-47939)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.