Rule Update
26-005 (2026年2月3日)
2026年2月3日
概要
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Adobe ColdFusion Central Config Server
1012491* - Adobe ColdFusion Directory Traversal Vulnerabilities (CVE-2025-61812 and CVE-2025-61822)
Apache Kylin
1012500* - Apache Kylin Arbitrary File Read Vulnerability (CVE-2025-61734)
DCERPC Services - Client
1012456* - Microsoft Windows SMB Client Remote Code Execution Vulnerability (CVE-2025-54101)
Flowise
1012507* - Flowise Command Injection Vulnerability (CVE-2025-8943)
Trend Micro Apex Central MsgReceiver
1012525 - Trend Micro Apex Central Remote Code Execution Vulnerability (CVE-2025-69258)
Web Application PHP Based
1012475* - WordPress 'Events Manager' Plugin SQL Injection Vulnerability (CVE-2025-6970)
Web Server HTTPS
1012515* - GeoServer XML External Entity Vulnerability (CVE-2025-58360)
1012521 - HPE OneView Remote Code Execution Vulnerability (CVE-2025-37164)
1012510 - Zabbix Server SQL Injection Vulnerability (CVE-2025-27240)
n8n
1012516 - n8n Arbitrary File Read Vulnerability (CVE-2026-21858)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Adobe ColdFusion Central Config Server
1012491* - Adobe ColdFusion Directory Traversal Vulnerabilities (CVE-2025-61812 and CVE-2025-61822)
Apache Kylin
1012500* - Apache Kylin Arbitrary File Read Vulnerability (CVE-2025-61734)
DCERPC Services - Client
1012456* - Microsoft Windows SMB Client Remote Code Execution Vulnerability (CVE-2025-54101)
Flowise
1012507* - Flowise Command Injection Vulnerability (CVE-2025-8943)
Trend Micro Apex Central MsgReceiver
1012525 - Trend Micro Apex Central Remote Code Execution Vulnerability (CVE-2025-69258)
Web Application PHP Based
1012475* - WordPress 'Events Manager' Plugin SQL Injection Vulnerability (CVE-2025-6970)
Web Server HTTPS
1012515* - GeoServer XML External Entity Vulnerability (CVE-2025-58360)
1012521 - HPE OneView Remote Code Execution Vulnerability (CVE-2025-37164)
1012510 - Zabbix Server SQL Injection Vulnerability (CVE-2025-27240)
n8n
1012516 - n8n Arbitrary File Read Vulnerability (CVE-2026-21858)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.