Deep Security Center
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
ActiveMQ OpenWire
1011897* - Apache ActiveMQ Insecure Deserialization Vulnerability (CVE-2023-46604)
Adobe FrameMaker Publishing Server
1011929 - Adobe FrameMaker Publishing Server Authentication Bypass Vulnerability (CVE-2023-44324)
HP Intelligent Management Center (IMC)
1011940 - Apache OFBiz Authentication Bypass Vulnerability (CVE-2023-51467)
PaperCut
1011855* - PaperCut NG and MF Remote Code Execution Vulnerability (CVE-2023-39469)
SolarWinds Information Service
1011901* - SolarWinds Network Configuration Manager Directory Traversal Vulnerability (CVE-2023-33226)
Splunk Enterprise
1011937 - Splunk Enterprise Arbitrary File Write Vulnerability (CVE-2023-46214)
Unix Samba
1011796* - Linux Kernel KSMBD Denial of Service Vulnerability (CVE-2023-32247)
Web Application PHP Based
1011936 - WordPress 'My Calendar' Plugin SQL Injection Vulnerability (CVE-2023-6360)
Web Server Miscellaneous
1011898* - Apache Superset Improper Input Validation Vulnerability (CVE-2023-39265)
1011844* - Atlassian Jira and Jira Service Desk 'Stagil Navigation Menus and Themes' Plugin Directory Traversal Vulnerability (CVE-2023-26255 and CVE-2023-26256)
1011906* - XWiki Change Request Extension Code Injection Vulnerability (CVE-2023-45138)
1011904* - XWiki Cross-Site Scripting Vulnerability (CVE-2023-40176)
Windows SMB Server
1011058* - Identified DCERPC EFSRPC Methods Call Over SMB Protocol (PetitPotam)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
ActiveMQ OpenWire
1011897* - Apache ActiveMQ Insecure Deserialization Vulnerability (CVE-2023-46604)
Adobe FrameMaker Publishing Server
1011929 - Adobe FrameMaker Publishing Server Authentication Bypass Vulnerability (CVE-2023-44324)
HP Intelligent Management Center (IMC)
1011940 - Apache OFBiz Authentication Bypass Vulnerability (CVE-2023-51467)
PaperCut
1011855* - PaperCut NG and MF Remote Code Execution Vulnerability (CVE-2023-39469)
SolarWinds Information Service
1011901* - SolarWinds Network Configuration Manager Directory Traversal Vulnerability (CVE-2023-33226)
Splunk Enterprise
1011937 - Splunk Enterprise Arbitrary File Write Vulnerability (CVE-2023-46214)
Unix Samba
1011796* - Linux Kernel KSMBD Denial of Service Vulnerability (CVE-2023-32247)
Web Application PHP Based
1011936 - WordPress 'My Calendar' Plugin SQL Injection Vulnerability (CVE-2023-6360)
Web Server Miscellaneous
1011898* - Apache Superset Improper Input Validation Vulnerability (CVE-2023-39265)
1011844* - Atlassian Jira and Jira Service Desk 'Stagil Navigation Menus and Themes' Plugin Directory Traversal Vulnerability (CVE-2023-26255 and CVE-2023-26256)
1011906* - XWiki Change Request Extension Code Injection Vulnerability (CVE-2023-45138)
1011904* - XWiki Cross-Site Scripting Vulnerability (CVE-2023-40176)
Windows SMB Server
1011058* - Identified DCERPC EFSRPC Methods Call Over SMB Protocol (PetitPotam)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Open Automation Software Platform OAS
1011934 - Open Automation Software OAS Platform Improper Authentication Vulnerability (CVE-2022-26833)
SolarWinds Orion Platform
1011935 - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-40056)
Unix Samba
1011798* - Canonical KSMBD-Tools Buffer Overflow Vulnerability (ZDI-CAN-17822)
Web Application PHP Based
1011910 - WordPress 'AYS Popup Box' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2023-4137)
1011925 - WordPress 'Royal Elementor Addons and Templates' Plugin Unrestricted File Upload Vulnerability (CVE-2023-5360)
Web Application Tomcat
1011322* - Laravel Deserialization Remote Code Execution Vulnerability (CVE-2021-3129)
Web Client Common
1011932 - Adobe Acrobat Reader DC Use-After-Free Information Disclosure Vulnerability (CVE-2023-44361)
Web Client HTTPS
1011927 - Curl and Libcurl Resource Exhaustion Vulnerability (CVE-2023-38039)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Open Automation Software Platform OAS
1011934 - Open Automation Software OAS Platform Improper Authentication Vulnerability (CVE-2022-26833)
SolarWinds Orion Platform
1011935 - SolarWinds Orion Platform SQL Injection Vulnerability (CVE-2023-40056)
Unix Samba
1011798* - Canonical KSMBD-Tools Buffer Overflow Vulnerability (ZDI-CAN-17822)
Web Application PHP Based
1011910 - WordPress 'AYS Popup Box' Plugin Reflected Cross-Site Scripting Vulnerability (CVE-2023-4137)
1011925 - WordPress 'Royal Elementor Addons and Templates' Plugin Unrestricted File Upload Vulnerability (CVE-2023-5360)
Web Application Tomcat
1011322* - Laravel Deserialization Remote Code Execution Vulnerability (CVE-2021-3129)
Web Client Common
1011932 - Adobe Acrobat Reader DC Use-After-Free Information Disclosure Vulnerability (CVE-2023-44361)
Web Client HTTPS
1011927 - Curl and Libcurl Resource Exhaustion Vulnerability (CVE-2023-38039)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
NFS Server
1011740* - Microsoft Windows Network File System Remote Code Execution Vulnerability (CVE-2023-24941)
Unix Samba
1011930 - Linux Kernel KSMBD NULL Pointer Dereference Vulnerability (CVE-2023-32252)
Web Server Apache
1011928 - Apache httpd 'mod_http2' Denial of Service Vulnerability (CVE-2023-43622)
Web Server HTTPS
1011931 - Adobe RoboHelp Server XML External Entity Information Disclosure Vulnerability (CVE-2023-22274)
1011914 - Dolibarr ERP And CRM Command Injection Vulnerability (CVE-2023-38886)
1011889* - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2023-35186)
Web Server Miscellaneous
1011924 - XWiki Code Injection Vulnerability (CVE-2023-46731)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
NFS Server
1011740* - Microsoft Windows Network File System Remote Code Execution Vulnerability (CVE-2023-24941)
Unix Samba
1011930 - Linux Kernel KSMBD NULL Pointer Dereference Vulnerability (CVE-2023-32252)
Web Server Apache
1011928 - Apache httpd 'mod_http2' Denial of Service Vulnerability (CVE-2023-43622)
Web Server HTTPS
1011931 - Adobe RoboHelp Server XML External Entity Information Disclosure Vulnerability (CVE-2023-22274)
1011914 - Dolibarr ERP And CRM Command Injection Vulnerability (CVE-2023-38886)
1011889* - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2023-35186)
Web Server Miscellaneous
1011924 - XWiki Code Injection Vulnerability (CVE-2023-46731)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Web Server Miscellaneous
1011933 - Apache Struts2 Remote Code Execution Vulnerability (CVE-2023-50164)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Web Server Miscellaneous
1011933 - Apache Struts2 Remote Code Execution Vulnerability (CVE-2023-50164)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
CentOS Web Panel
1011887* - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42123)
NTP Server Linux
1009492* - NTPsec 'ntpd ctl_getitem' Out Of Bounds Read Vulnerability (CVE-2019-6443)
1009620* - NTPsec ntpd 'write_variables' Denial Of Service Vulnerability (CVE-2019-6445)
SolarWinds Access Rights Manager
1011890* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2023-35185)
1011891* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2023-35187)
Web Client Common
1011922 - Adobe Acrobat And Reader Remote Code Execution Vulnerability (CVE-2023-44371)
Web Server HTTPS
1011917 - Adobe RoboHelp Server Information Disclosure Vulnerability (CVE-2023-22272)
1011919 - Adobe RoboHelp Server Path Traversal Vulnerability (CVE-2023-22273)
1011916 - Adobe RoboHelp Server SQL Injection Vulnerability (CVE-2023-22275)
Zoho ManageEngine Recovery Manager Plus
1011923 - Zoho ManageEngine Recovery Manager Plus Command Injection Vulnerability (CVE-2023-48646)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1003447* - Web Server - Apache
Deep Packet Inspection Rules:
CentOS Web Panel
1011887* - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42123)
NTP Server Linux
1009492* - NTPsec 'ntpd ctl_getitem' Out Of Bounds Read Vulnerability (CVE-2019-6443)
1009620* - NTPsec ntpd 'write_variables' Denial Of Service Vulnerability (CVE-2019-6445)
SolarWinds Access Rights Manager
1011890* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2023-35185)
1011891* - SolarWinds Access Rights Manager Directory Traversal Vulnerability (CVE-2023-35187)
Web Client Common
1011922 - Adobe Acrobat And Reader Remote Code Execution Vulnerability (CVE-2023-44371)
Web Server HTTPS
1011917 - Adobe RoboHelp Server Information Disclosure Vulnerability (CVE-2023-22272)
1011919 - Adobe RoboHelp Server Path Traversal Vulnerability (CVE-2023-22273)
1011916 - Adobe RoboHelp Server SQL Injection Vulnerability (CVE-2023-22275)
Zoho ManageEngine Recovery Manager Plus
1011923 - Zoho ManageEngine Recovery Manager Plus Command Injection Vulnerability (CVE-2023-48646)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
1003447* - Web Server - Apache
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Splunk Enterprise
1011912 - Splunk Enterprise Privilege Escalation Vulnerability (CVE-2023-32707)
Web Client Common
1011920 - Google Chrome Type Confusion Vulnerability (CVE-2023-3420)
Web Server HTTPS
1011907 - Cacti Command Injection Vulnerability (CVE-2023-39362)
1011926 - ownCloud 'graphapi' Information Disclosure Vulnerability (CVE-2023-49103)
Web Server Miscellaneous
1011903 - MagnusBilling Remote Command Execution Vulnerability (CVE-2023-30258)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Splunk Enterprise
1011912 - Splunk Enterprise Privilege Escalation Vulnerability (CVE-2023-32707)
Web Client Common
1011920 - Google Chrome Type Confusion Vulnerability (CVE-2023-3420)
Web Server HTTPS
1011907 - Cacti Command Injection Vulnerability (CVE-2023-39362)
1011926 - ownCloud 'graphapi' Information Disclosure Vulnerability (CVE-2023-49103)
Web Server Miscellaneous
1011903 - MagnusBilling Remote Command Execution Vulnerability (CVE-2023-30258)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ceph Messenger Client
1011911 - Linux Kernel Buffer Overflow Vulnerability (CVE-2023-44466)
Elastic Kibana And Elasticsearch
1011909 - Elastic Kibana Upgrade Assistant Telemetry Collector Prototype Pollution Vulnerability
SolarWinds Information Service
1011921 - SolarWinds Network Configuration Manager Remote Code Execution Vulnerability (CVE-2023-33227)
SolarWinds Orion Platform
1011856* - SolarWinds Orion Platform Multiple Incomplete List of Disallowed Inputs Vulnerabilities (CVE-2023-23844 and CVE-2023-40062)
Web Client Common
1011918 - Adobe Acrobat And Reader Remote Code Execution Vulnerability (CVE-2023-44338)
Web Server HTTPS
1011895* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22090) - 1
1011896* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22100) - 1
1011876* - Progress WS_FTP Server Insecure Deserialization Vulnerability (CVE-2023-40044)
Zoho ManageEngine Applications Manager
1011915 - Zoho ManageEngine Applications Manager Cross-Site Scripting Vulnerability (CVE-2023-38333)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Ceph Messenger Client
1011911 - Linux Kernel Buffer Overflow Vulnerability (CVE-2023-44466)
Elastic Kibana And Elasticsearch
1011909 - Elastic Kibana Upgrade Assistant Telemetry Collector Prototype Pollution Vulnerability
SolarWinds Information Service
1011921 - SolarWinds Network Configuration Manager Remote Code Execution Vulnerability (CVE-2023-33227)
SolarWinds Orion Platform
1011856* - SolarWinds Orion Platform Multiple Incomplete List of Disallowed Inputs Vulnerabilities (CVE-2023-23844 and CVE-2023-40062)
Web Client Common
1011918 - Adobe Acrobat And Reader Remote Code Execution Vulnerability (CVE-2023-44338)
Web Server HTTPS
1011895* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22090) - 1
1011896* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22100) - 1
1011876* - Progress WS_FTP Server Insecure Deserialization Vulnerability (CVE-2023-40044)
Zoho ManageEngine Applications Manager
1011915 - Zoho ManageEngine Applications Manager Cross-Site Scripting Vulnerability (CVE-2023-38333)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Ivanti Avalanche
1011871* - Ivanti Avalanche XML External Entity Processing Vulnerability (CVE-2023-32567)
SolarWinds Information Service
1011901 - SolarWinds Network Configuration Manager Directory Traversal Vulnerability (CVE-2023-33226)
Web Server HTTPS
1011905 - Cachet Server-Side Template Injection Vulnerability (CVE-2023-43661)
1011908 - Identified Microsoft Exchange Server PowerShell Traffic
1011902 - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2023-35184)
Web Server Miscellaneous
1011898 - Apache Superset Improper Input Validation Vulnerability (CVE-2023-39265)
1011906 - XWiki Change Request Extension Code Injection Vulnerability (CVE-2023-45138)
1011904 - XWiki Cross-Site Scripting Vulnerability (CVE-2023-40176)
Zoho ManageEngine AssetExplorer_SupportCenter Plus_ADManager Plus
1011879* - Zoho ManageEngine ADManager Plus Directory Traversal Vulnerability (CVE-2023-39912)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Ivanti Avalanche
1011871* - Ivanti Avalanche XML External Entity Processing Vulnerability (CVE-2023-32567)
SolarWinds Information Service
1011901 - SolarWinds Network Configuration Manager Directory Traversal Vulnerability (CVE-2023-33226)
Web Server HTTPS
1011905 - Cachet Server-Side Template Injection Vulnerability (CVE-2023-43661)
1011908 - Identified Microsoft Exchange Server PowerShell Traffic
1011902 - SolarWinds Access Rights Manager Insecure Deserialization Vulnerability (CVE-2023-35184)
Web Server Miscellaneous
1011898 - Apache Superset Improper Input Validation Vulnerability (CVE-2023-39265)
1011906 - XWiki Change Request Extension Code Injection Vulnerability (CVE-2023-45138)
1011904 - XWiki Cross-Site Scripting Vulnerability (CVE-2023-40176)
Zoho ManageEngine AssetExplorer_SupportCenter Plus_ADManager Plus
1011879* - Zoho ManageEngine ADManager Plus Directory Traversal Vulnerability (CVE-2023-39912)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
ActiveMQ OpenWire
1011897 - Apache ActiveMQ Deserialization of Untrusted Data Vulnerability (CVE-2023-46604)
CentOS Web Panel
1011900 - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42120)
1011887* - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42123)
JetBrains TeamCity
1011877* - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2023-41249)
SolarWinds Information Service
1011872* - SolarWinds Orion Platform Incorrect Comparison Vulnerability (CVE-2023-23840)
Web Application PHP Based
1011866 - LibreNMS Cross-Site Scripting Vulnerability (CVE-2023-4347)
Web Server HTTPS
1011881 - GitLab Stored Cross-Site Scripting Vulnerability (CVE-2023-2164)
1011886 - Qlik Sense Enterprise HTTP Request Smuggling Vulnerability (CVE-2023-41265)
Web Server Miscellaneous
1011759* - Ivanti Avalanche Multiple Arbitrary File Upload Vulnerabilities
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
ActiveMQ OpenWire
1011897 - Apache ActiveMQ Deserialization of Untrusted Data Vulnerability (CVE-2023-46604)
CentOS Web Panel
1011900 - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42120)
1011887* - Control Web Panel Command Injection Remote Code Execution Vulnerability (CVE-2023-42123)
JetBrains TeamCity
1011877* - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2023-41249)
SolarWinds Information Service
1011872* - SolarWinds Orion Platform Incorrect Comparison Vulnerability (CVE-2023-23840)
Web Application PHP Based
1011866 - LibreNMS Cross-Site Scripting Vulnerability (CVE-2023-4347)
Web Server HTTPS
1011881 - GitLab Stored Cross-Site Scripting Vulnerability (CVE-2023-2164)
1011886 - Qlik Sense Enterprise HTTP Request Smuggling Vulnerability (CVE-2023-41265)
Web Server Miscellaneous
1011759* - Ivanti Avalanche Multiple Arbitrary File Upload Vulnerabilities
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Web Server Miscellaneous
1011899 - Atlassian Confluence Data Center and Server Improper Authorization Vulnerability (CVE-2023-22518)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Web Server Miscellaneous
1011899 - Atlassian Confluence Data Center and Server Improper Authorization Vulnerability (CVE-2023-22518)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Featured Stories
Unveiling AI Agent Vulnerabilities Part V: Securing LLM ServicesTo conclude our series on agentic AI, this article examines emerging vulnerabilities that threaten AI agents, focusing on providing proactive security recommendations on areas such as code execution, data exfiltration, and database access.Read more
Unveiling AI Agent Vulnerabilities Part IV: Database Access VulnerabilitiesHow can attackers exploit weaknesses in database-enabled AI agents? This research explores how SQL generation vulnerabilities, stored prompt injection, and vector store poisoning can be weaponized by attackers for fraudulent activities.Read more
The Mirage of AI Programming: Hallucinations and Code IntegrityThe adoption of large language models (LLMs) and Generative Pre-trained Transformers (GPTs), such as ChatGPT, by leading firms like Microsoft, Nuance, Mix and Google CCAI Insights, drives the industry towards a series of transformative changes. As the use of these new technologies becomes prevalent, it is important to understand their key behavior, advantages, and the risks they present.Read more
Open RAN: Attack of the xAppsThis article discusses two O-RAN vulnerabilities that attackers can exploit. One vulnerability stems from insufficient access control, and the other arises from faulty message handlingRead more