25-024 (June 10, 2025)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

BentoML
1012362 - BentoML's runner server Insecure Deserialization Vulnerability (CVE-2025-32375)


CyberPanel
1012377 - CyberPanel Command Injection Vulnerability (CVE-2024-51568)


Directory Client LDAP TCP
1012276* - Microsoft Windows LDAP Integer Overflow Vulnerability (CVE-2024-49112)


Ivanti Endpoint Manager
1012346* - Ivanti Endpoint Manager SQL Injection Vulnerability (CVE-2024-34781)


JetBrains TeamCity
1012297* - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2025-24459)


Remote Desktop Gateway
1012376 - Microsoft Windows Remote Desktop Gateway Denial Of Service Vulnerability (CVE-2025-30394)


Web Application Common
1012348* - ZendTo Remote Code Execution Vulnerability (CVE-2021-47667)


Web Application PHP Based
1012285* - Clinic's Patient Management System Remote Code Execution Vulnerability (CVE-2022-40471)


Web Client Common
1012379 - Microsoft Windows Remote Code Execution Vulnerability (CVE-2025-33053)


Web Client HTTPS
1012375 - Trend Micro Apex Central Deserialization Of Untrusted Data Vulnerability (CVE-2025-49220)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.