Rule Update

24-038 (August 13, 2024)

Publish date: August 13, 2024

  DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

CentOS Web Panel
1012095 - CentOS Web Panel Arbitrary File Write Vulnerability (CVE-2021-45466)
1012071 - CentOS Web Panel File Inclusion Vulnerability (CVE-2021-45467)


HP Intelligent Management Center (IMC)
1012120 - Apache OFBiz Authentication Bypass Vulnerability (CVE-2024-38856)


SolarWinds Dameware Web Help Desk
1012127 - SolarWinds Dameware Web Help Desk Zero Day Initiative Vulnerability (ZDI-CAN-25136)


Splunk Enterprise
1012108 - Splunk Enterprise Directory Traversal Vulnerability (CVE-2024-36991)


Web Application Common
1012079* - SolarWinds Serv-U Directory Traversal Vulnerability (CVE-2024-28995)


Web Application PHP Based
1012073* - LibreNMS Cross-Site Scripting Vulnerability (CVE-2024-32479)
1012097 - LibreNMS SQL Injection Vulnerability (CVE-2024-32461)


Web Client Common
1012109 - Microsoft Windows LNK NTLM Spoofing Vulnerability Over HTTP (CVE-2024-30081)


Web Server HTTPS
1012093 - Cacti SQL Injection Vulnerability (CVE-2024-31445)
1012107 - Cacti SQL Injection Vulnerability (CVE-2024-31458)
1012112 - GitLab Denial Of Service Vulnerability (CVE-2024-2651)
1012105 - GitLab Regular Expression Denial Of Service Vulnerability (CVE-2024-2878)
1012087* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-29822 and CVE-2024-29824)
1012099 - Progress WhatsUp Gold Directory Traversal Vulnerability (CVE-2024-5019)
1012092* - Progress WhatsUp Gold Path Traversal Vulnerability (CVE-2024-5018)


Web Server Miscellaneous
1012111 - Apache JSPWiki Stored Cross-Site Scripting Vulnerability (CVE-2024-27136)
1012048* - GitLab Cross-Site Scripting Vulnerability (CVE-2024-1451)
1012017* - Identified Restricted file upload with specific extension


Web Server Rejetto
1012086 - Rejetto HTTP File Server (HFS) Server Side Template Injection Vulnerability (CVE-2024-23692)


Web Server SharePoint BDC
1012113 - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2024-38023)


Zabbix Server
1012090 - Zabbix SQL Injection Vulnerability (CVE-2024-22120)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.

Featured Stories