Rule Update

23-009 (February 28, 2023)


  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Redis Server
1011681 - Redis Integer Overflow Vulnerability (CVE-2022-35977)


Web Application Common
1010562* - Mantis Bug Tracker 'verify.php' Remote Password Reset Vulnerability (CVE-2017-7615)


Web Server HTTPS
1011673 - Cacti Command Injection Vulnerability (CVE-2022-46169)


Web Server SharePoint
1011541* - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2022-35823)
1011676* - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2022-37961)


Zimbra Admin Console Ports
1011513* - Zimbra Collaboration Multiple Directory Traversal Vulnerabilities (CVE-2022-27925 & CVE-2022-37042)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

1002798* - Database Server - PostgreSQL