Rule Update
DPIルール他更新情報:22-061(2022年12月20日)
2022年12月20日
概要
* は既存ルールの新バージョンを示します。
DPI(Deep Packet Inspection) ルール:
Advanced Message Queuing Protocol (AMQP)
1011585* - SolarWinds Network Performance Monitor Insecure Deserialization Vulnerabilities (CVE-2022-36957 and CVE-2022-38108)
SolarWinds Information Service
1011631* - SolarWinds Network Performance Monitor Privilege Escalation Vulnerability (CVE-2022-36960)
SolarWinds Orion Platform
1011630 - SolarWinds Network Performance Monitor Command Injection Vulnerability (CVE-2022-36962)
Webアプリケーション PHP
1011644 - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2022-4067)
1011643 - WordPress 'Limit Login Attempts' Plugin Cross-Site Scripting Vulnerability (CVE-2020-35589)
1011638* - WordPress 'Responsive 3D Slider' Plugin SQL Injection Vulnerability (CVE-2021-24398)
1011637 - WordPress 'Simple School Staff Directory' Plugin Arbitrary File Upload Vulnerability (CVE-2021-24663)
1011632* - WordPress 'Splash Header' Plugin Cross-Site Scripting Vulnerability (CVE-2021-24587)
1011618* - WordPress 'Support Board' Plugin SQL Injection Vulnerability (CVE-2021-24741)
1009644* - WordPress 'W3 Total Cache' Plugin Arbitrary File Read Vulnerability (CVE-2019-6715)
1011622* - WordPress 'WP Dialog' Plugin Cross-Site Scripting Vulnerability (CVE-2021-24600)
1011639* - WordPress 'WP-Board' Plugin SQL Injection Vulnerability (CVE-2021-24404)
1011620* - WordPress Directory Traversal Vulnerability (CVE-2019-8943)
Webクライアント Zoho ManageEngine
1011627* - Zoho ManageEngine Multiple Products Information Disclosure Vulnerability (CVE-2022-40771)
Webサーバ HTTPS
1011573* - Centreon 'Poller Broker' SQL Injection Vulnerability (CVE-2022-42429)
Webサーバ その他
1011592* - XWiki Code Injection Vulnerability (CVE-2022-36099)
Zoho ManageEngine
1011549* - Zoho ManageEngine Multiple Products SQL Injection Vulnerability (CVE-2022-40300)
Zoho ManageEngine ServiceDesk Plus_MSP
1011595* - Zoho ManageEngine Multiple Products Privilege Escalation Vulnerability (CVE-2022-40773)
変更監視(Integrity Monitoring)ルール:
今回のセキュリティアップデートには、新規の変更監視ルールおよび更新は含まれておりません。
セキュリティログ監視(Log Inspection)ルール:
1008792* - Microsoft Windows Security Events - 4
DPI(Deep Packet Inspection) ルール:
Advanced Message Queuing Protocol (AMQP)
1011585* - SolarWinds Network Performance Monitor Insecure Deserialization Vulnerabilities (CVE-2022-36957 and CVE-2022-38108)
SolarWinds Information Service
1011631* - SolarWinds Network Performance Monitor Privilege Escalation Vulnerability (CVE-2022-36960)
SolarWinds Orion Platform
1011630 - SolarWinds Network Performance Monitor Command Injection Vulnerability (CVE-2022-36962)
Webアプリケーション PHP
1011644 - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2022-4067)
1011643 - WordPress 'Limit Login Attempts' Plugin Cross-Site Scripting Vulnerability (CVE-2020-35589)
1011638* - WordPress 'Responsive 3D Slider' Plugin SQL Injection Vulnerability (CVE-2021-24398)
1011637 - WordPress 'Simple School Staff Directory' Plugin Arbitrary File Upload Vulnerability (CVE-2021-24663)
1011632* - WordPress 'Splash Header' Plugin Cross-Site Scripting Vulnerability (CVE-2021-24587)
1011618* - WordPress 'Support Board' Plugin SQL Injection Vulnerability (CVE-2021-24741)
1009644* - WordPress 'W3 Total Cache' Plugin Arbitrary File Read Vulnerability (CVE-2019-6715)
1011622* - WordPress 'WP Dialog' Plugin Cross-Site Scripting Vulnerability (CVE-2021-24600)
1011639* - WordPress 'WP-Board' Plugin SQL Injection Vulnerability (CVE-2021-24404)
1011620* - WordPress Directory Traversal Vulnerability (CVE-2019-8943)
Webクライアント Zoho ManageEngine
1011627* - Zoho ManageEngine Multiple Products Information Disclosure Vulnerability (CVE-2022-40771)
Webサーバ HTTPS
1011573* - Centreon 'Poller Broker' SQL Injection Vulnerability (CVE-2022-42429)
Webサーバ その他
1011592* - XWiki Code Injection Vulnerability (CVE-2022-36099)
Zoho ManageEngine
1011549* - Zoho ManageEngine Multiple Products SQL Injection Vulnerability (CVE-2022-40300)
Zoho ManageEngine ServiceDesk Plus_MSP
1011595* - Zoho ManageEngine Multiple Products Privilege Escalation Vulnerability (CVE-2022-40773)
変更監視(Integrity Monitoring)ルール:
今回のセキュリティアップデートには、新規の変更監視ルールおよび更新は含まれておりません。
セキュリティログ監視(Log Inspection)ルール:
1008792* - Microsoft Windows Security Events - 4