Rule Update
26-010 (2026年3月10日)
概要
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Telnet Server
1012523* - Telnetd GNU InetUtils Authentication Bypass Vulnerability (CVE-2026-24061)
Web Server Adobe ColdFusion
1012509* - Adobe ColdFusion Directory Traversal Vulnerability (CVE-2025-43566)
Web Server HTTPS
1012532 - FreePBX Endpoint Manager Command Injection Vulnerability (CVE-2025-64328)
1012528 - WordPress 'The Events Calendar' Plugin SQL Injection Vulnerability (CVE-2025-12197)
1012535 - WordPress 'Themewinter Eventin' Path Traversal Vulnerability (CVE-2025-47445)
Web Server Nagios
1012481* - Nagios XI Command Injection Vulnerability (CVE-2025-34227)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Telnet Server
1012523* - Telnetd GNU InetUtils Authentication Bypass Vulnerability (CVE-2026-24061)
Web Server Adobe ColdFusion
1012509* - Adobe ColdFusion Directory Traversal Vulnerability (CVE-2025-43566)
Web Server HTTPS
1012532 - FreePBX Endpoint Manager Command Injection Vulnerability (CVE-2025-64328)
1012528 - WordPress 'The Events Calendar' Plugin SQL Injection Vulnerability (CVE-2025-12197)
1012535 - WordPress 'Themewinter Eventin' Path Traversal Vulnerability (CVE-2025-47445)
Web Server Nagios
1012481* - Nagios XI Command Injection Vulnerability (CVE-2025-34227)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.