Rule Update
26-016 (2026年4月21日)
2026年4月21日
概要
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Kerberos KDC Server
1012552 - Identified Kerberos PKINIT AD CS Certificate Impersonation via Certipy
1012336* - Microsoft Windows Kerberos Security Feature Bypass Vulnerability (CVE-2025-29809)
Trend Micro Control Manager
1008760* - Control Manager SQL Injection Vulnerability (CVE-2017-11383)
1008589* - Control Manager cmdHandlerLicenseManager SQL Injection Vulnerability (CVE-2017-11384)
1008721* - Control Manager cmdHandlerStatusMonitor SQL Injection Vulnerability (CVE-2017-11385)
Web Server Common
1010697* - InterScan Messaging Security Virtual Appliance Widget Information Disclosure Vulnerability (CVE-2020-27019)
Web Server HTTPS
1008293* - Control Manager Download Multiple Directory Traversal Information Disclosure Vulnerabilities
1008857* - Control Manager Multiple SQL Injection Remote Code Execution Vulnerability (CVE-2018-3604)
1012461* - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2025-55296)
Web Server Miscellaneous
1010627* - InterScan Web Security Virtual Appliance Buffer Overflow Vulnerability (CVE-2020-28578)
Web Server SharePoint
1012554 - Microsoft SharePoint Server Spoofing Vulnerability (CVE-2026-32201)
Windows SMB Server
1012219* - Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Kerberos KDC Server
1012552 - Identified Kerberos PKINIT AD CS Certificate Impersonation via Certipy
1012336* - Microsoft Windows Kerberos Security Feature Bypass Vulnerability (CVE-2025-29809)
Trend Micro Control Manager
1008760* - Control Manager SQL Injection Vulnerability (CVE-2017-11383)
1008589* - Control Manager cmdHandlerLicenseManager SQL Injection Vulnerability (CVE-2017-11384)
1008721* - Control Manager cmdHandlerStatusMonitor SQL Injection Vulnerability (CVE-2017-11385)
Web Server Common
1010697* - InterScan Messaging Security Virtual Appliance Widget Information Disclosure Vulnerability (CVE-2020-27019)
Web Server HTTPS
1008293* - Control Manager Download Multiple Directory Traversal Information Disclosure Vulnerabilities
1008857* - Control Manager Multiple SQL Injection Remote Code Execution Vulnerability (CVE-2018-3604)
1012461* - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2025-55296)
Web Server Miscellaneous
1010627* - InterScan Web Security Virtual Appliance Buffer Overflow Vulnerability (CVE-2020-28578)
Web Server SharePoint
1012554 - Microsoft SharePoint Server Spoofing Vulnerability (CVE-2026-32201)
Windows SMB Server
1012219* - Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.