26-016 (April 21, 2026)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Kerberos KDC Server
1012552 - Identified Kerberos PKINIT AD CS Certificate Impersonation via Certipy
1012336* - Microsoft Windows Kerberos Security Feature Bypass Vulnerability (CVE-2025-29809)


Trend Micro Control Manager
1008760* - Control Manager SQL Injection Vulnerability (CVE-2017-11383)
1008589* - Control Manager cmdHandlerLicenseManager SQL Injection Vulnerability (CVE-2017-11384)
1008721* - Control Manager cmdHandlerStatusMonitor SQL Injection Vulnerability (CVE-2017-11385)


Web Server Common
1010697* - InterScan Messaging Security Virtual Appliance Widget Information Disclosure Vulnerability (CVE-2020-27019)


Web Server HTTPS
1008293* - Control Manager Download Multiple Directory Traversal Information Disclosure Vulnerabilities
1008857* - Control Manager Multiple SQL Injection Remote Code Execution Vulnerability (CVE-2018-3604)
1012461* - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2025-55296)


Web Server Miscellaneous
1010627* - InterScan Web Security Virtual Appliance Buffer Overflow Vulnerability (CVE-2020-28578)


Web Server SharePoint
1012554 - Microsoft SharePoint Server Spoofing Vulnerability (CVE-2026-32201)


Windows SMB Server
1012219* - Deep Security Agent Command Injection Vulnerability (CVE-2024-51503)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.