25-005 (February 4, 2025)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

OneDev Server
1012270 - OneDev Arbitrary File Read Vulnerability (CVE-2024-45309)


SNMP Client
1012269 - Paessler PRTG Network Monitor Cross-Site Scripting Vulnerability (CVE-2024-12833)


Web Application Tomcat
1012251 - LibreNMS Command Injection Vulnerability (CVE-2024-51092)


Web Proxy Squid
1012273 - Squid Proxy Denial Of Service Vulnerability (CVE-2024-45802)


Web Server HTTPS
1012264 - Veritas Enterprise Vault Cross-Site Scripting Vulnerabilities (CVE-2024-52941) and (CVE-2024-52942)
1012262 - Veritas Enterprise Vault Cross-Site Scripting Vulnerability (CVE-2024-52943)
1012266 - Veritas Enterprise Vault Cross-Site Scripting Vulnerability (CVE-2024-52944)


Web Server Miscellaneous
1012258 - XWiki Information Disclosure Vulnerability (CVE-2023-50719)


Web Server Nagios
1012275 - Nagios XI 'windows-winrm.inc.php' Command Injection Vulnerability


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.