Rule Update
25-052 (2025年12月9日)
2025年12月9日
概要
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
JetBrains TeamCity
1012470* - JetBrains TeamCity Reflected Cross-Site Scripting Vulnerability (CVE-2025-54534)
Network Scanner
1008800* - Bypass Network Scanner Traffic
React Server
1012497* - React Server Remote Code Execution Vulnerability (CVE-2025-55182 and CVE-2025-66478) - 1
1012494* - React Server Remote Code Execution Vulnerability (CVE-2025-55182 and CVE-2025-66478) - 2
TFTP Client Decoder
1003526* - Enable TFTP Decoder
Web Application Ruby Based
1012492 - Grafana Open Redirect Vulnerability (CVE-2025-6197)
Web Client Common
1004715* - HTTP Web Client Decoding
Web Server Common
1012412* - Bypass Network Scanner Traffic - XFF
1012495 - DataEase Server-Side Request Forgery Vulnerability (CVE-2025-64163)
1000128* - HTTP Protocol Decoding
Web Server HTTPS
1012496 - Fairsketch Rise Ultimate Project Manager and CRM HTML Injection Vulnerability (CVE-2025-60378)
Windows Services RPC Client DCERPC
1007538* - Windows Client Port Mapper Decoder
Zoho ManageEngine ADAuditPlus
1012468* - Zoho ManageEngine ADAudit Plus SQL Injection Vulnerability (CVE-2025-3836)
dotCMS
1012471* - dotCMS SQL Injection Vulnerability (CVE-2025-8311)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
JetBrains TeamCity
1012470* - JetBrains TeamCity Reflected Cross-Site Scripting Vulnerability (CVE-2025-54534)
Network Scanner
1008800* - Bypass Network Scanner Traffic
React Server
1012497* - React Server Remote Code Execution Vulnerability (CVE-2025-55182 and CVE-2025-66478) - 1
1012494* - React Server Remote Code Execution Vulnerability (CVE-2025-55182 and CVE-2025-66478) - 2
TFTP Client Decoder
1003526* - Enable TFTP Decoder
Web Application Ruby Based
1012492 - Grafana Open Redirect Vulnerability (CVE-2025-6197)
Web Client Common
1004715* - HTTP Web Client Decoding
Web Server Common
1012412* - Bypass Network Scanner Traffic - XFF
1012495 - DataEase Server-Side Request Forgery Vulnerability (CVE-2025-64163)
1000128* - HTTP Protocol Decoding
Web Server HTTPS
1012496 - Fairsketch Rise Ultimate Project Manager and CRM HTML Injection Vulnerability (CVE-2025-60378)
Windows Services RPC Client DCERPC
1007538* - Windows Client Port Mapper Decoder
Zoho ManageEngine ADAuditPlus
1012468* - Zoho ManageEngine ADAudit Plus SQL Injection Vulnerability (CVE-2025-3836)
dotCMS
1012471* - dotCMS SQL Injection Vulnerability (CVE-2025-8311)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.