Rule Update

22-052 (October 25, 2022)


* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Directory Server LDAP
1011531* - Microsoft Windows Active Directory Certificate Services Privilege Escalation Vulnerability (CVE-2022-34691)

JBoss Remoting Connector Unified Invoker
1011570 - Red Hat JBoss Enterprise Application Platform Remote Code Execution Vulnerability

WSO2 Enterprise Integrator
1011580 - WSO2 Enterprise Integrator Cross-Site Scripting Vulnerability (CVE-2022-39810)

Web Application Common
1011577 - Fastify Denial Of Service Vulnerability (CVE-2022-39288)

Web Application PHP Based
1011574 - WordPress 'Ketchup Restaurant Reservations' Plugin Cross-Site Scripting Vulnerability (CVE-2022-2753)
1011561* - WordPress 'Ketchup Restaurant Reservations' Plugin SQL Injection Vulnerability (CVE-2022-2754)
1011579 - WordPress 'Litespeed' Plugin Cross-Site Scripting Vulnerability (CVE-2020-29172)

Web Client Common
1011576 - Chromium Based Browsers Use After Free Vulnerability (CVE-2022-3038)

Web Server Common
1011575 - Apache Commons Text Remote Code Execution Vulnerability (CVE-2022-42889)

Web Server Miscellaneous
1011581 - Apache JSPWiki 'UserPreferences.jsp' Cross-Site Request Forgery Vulnerability (CVE-2022-28731)
1011572 - Vm2 Sandbox Remote Code Execution Vulnerability (CVE-2021-23449)

Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.

Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.