25-048 (November 25, 2025)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Apache Kylin
1012483 - Apache Kylin Authentication Bypass Vulnerability (CVE-2025-61733)


HPE Insight Remote Support
1012389* - HPE Insight Remote Support Directory Traversal Vulnerability (CVE-2025-37098)


Ivanti Endpoint Manager
1012149* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities - 1
1012346* - Ivanti Endpoint Manager Multiple SQL Injection Vulnerabilities - 3


JetBrains TeamCity
1012381* - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2025-46618)


OIM Managed Server
1012488 - Oracle Identity Manager Authentication Bypass Vulnerability (CVE-2025-61757)


Web Application Common
1012482 - React Native Community CLI Remote Code Execution Vulnerability (CVE-2025-11953)


Web Application Tomcat
1012487 - Apache Tomcat Directory Traversal Vulnerability (CVE-2025-55752)


Web Server Adobe ColdFusion
1012405* - Adobe ColdFusion Stored Cross-Site Scripting Vulnerability (CVE-2025-49541)


Web Server HTTPS
1012486 - Centreon Command Injection Vulnerability (CVE-2025-5946)
1012384* - Roundcube Webmail Insecure Deserialization Vulnerability (CVE-2025-49113)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.