Rule Update

24-001 (January 2, 2024)


* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Open Automation Software Platform OAS
1011934 - Open Automation Software OAS Platform Improper Authentication Vulnerability (CVE-2022-26833)

SolarWinds Orion Platform
1011935 - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-40056)

Unix Samba
1011798* - Canonical KSMBD-Tools Buffer Overflow Vulnerability (ZDI-CAN-17822)

Web Application PHP Based
1011910 - WordPress 'AYS Popup Box' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2023-4137)
1011925 - WordPress 'Royal Elementor Addons and Templates' Plugin Unrestricted File Upload Vulnerability (CVE-2023-5360)

Web Application Tomcat
1011322* - Laravel Deserialization Remote Code Execution Vulnerability (CVE-2021-3129)

Web Client Common
1011932 - Adobe Acrobat Reader DC Use-After-Free Information Disclosure Vulnerability (CVE-2023-44361)

Web Client HTTPS
1011927 - Curl and Libcurl Resource Exhaustion Vulnerability (CVE-2023-38039)

Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.

Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.