Rule Update

24-005 (January 23, 2024)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

OpenTSDB
1011938 - OpenTSDB Unauthenticated Command Injection Vulnerability (CVE-2023-36812 and CVE-2023-25826)


Web Application PHP Based
1011947 - WordPress 'Backup Migration' Plugin Remote Code Execution Vulnerability (CVE-2023-6553)


Web Server HTTPS
1011916* - Adobe RoboHelp Server SQL Injection Vulnerability (CVE-2023-22275)
1011931* - Adobe RoboHelp Server XML External Entity Information Disclosure Vulnerability (CVE-2023-22274)
1011905* - Cachet Server-Side Template Injection Vulnerability (CVE-2023-43661)
1011914* - Dolibarr ERP And CRM Command Injection Vulnerability (CVE-2023-38886)
1011953 - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52327)
1011952 - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52328)
1011951 - Trend Micro Apex Central Cross-Site Scripting Vulnerability (CVE-2023-52330)


Web Server Miscellaneous
1011954 - Atlassian Confluence Data Center and Server Template Injection Vulnerability (CVE-2023-22527)
1011924* - XWiki Code Injection Vulnerability (CVE-2023-46731)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.