IPS Signature Database Update

Name ips.sig
Version 2.1.576
StoneOS StoneOS 5.0R4F3.1 or above
Release Date 2024-09-29
New Signature
(29)		 Rule ID Rule Name StonesOS Detail
105464 Ransomware Activity: DNS Query to Cerber Domain 5.5R5 or above click for more information
338435 Aj-Report SQL Injection Vulnerability (CVE-2024-5356) 5.0R4 or above click for more information
105463 Ransomware Activity: DNS Query to Cerber Domain 5.5R5 or above click for more information
105453 Trojan Activity: Group 21 CnC Domain Observed in DNS Query 5.5R5 or above click for more information
105459 Trojan Activity: APT DarkHydrus DNS Lookup 18 5.5R5 or above click for more information
338438 Aj-Report transformScript Remote Code Execution Vulnerability 5.0R4 or above click for more information
714731 Trojan Activity: Observed Nemty Ransomware Payment Page 5.5R5 or above click for more information
338434 Aj-Report validationRulesRemote Code Execution Vulnerability 5.0R4 or above click for more information
105462 Ransomware Activity: DNS Query to Cerber Domain 5.5R5 or above click for more information
105467 Trojan Activity: Inter Skimmer CnC Domain in DNS Lookup 5.5R5 or above click for more information
105458 Ransomware Activity: DNS Query to Cerber Domain 5.5R5 or above click for more information
338431 Changedetection Remote Code Execution Vulnerability (CVE-2024-32651) 5.5R5 or above click for more information
338437 Aj-Report dynSentence SQL Injection Vulnerability 5.0R4 or above click for more information
105461 Ransomware Activity: DNS Query to Cerber Domain 5.5R5 or above click for more information
105466 Trojan Activity: Inter Skimmer CnC Domain in DNS Lookup 5.5R5 or above click for more information
338433 Yonyou NC-Cloud blobRefClassSearch Deserialization Vulnerability 5.0R4 or above click for more information
105457 Trojan Activity: APT DarkHydrus DNS Lookup 15 5.5R5 or above click for more information
105455 Trojan Activity: APT DarkHydrus DNS Lookup 10 5.5R5 or above click for more information
338440 Dockwatch Remote Command Execution Vulnerability 5.5R5 or above click for more information
332659 Trojan Activity: Observed Malicious SSL Cert (AZORult CnC) 5.5R5 or above click for more information
......
Updated Signature
(7)		 Rule ID Rule Name StonesOS Detail
324227 MetalGenix GeniXCMS SQL Injection Vulnerability (CVE-2015-3933) 5.5R5 or above Click here for more information
323926 rConfig ajaxServerSettingsChk.php Command Injection Vulnerability (CVE-2019-16662) 5.5R5 or above Click here for more information
336589 Delta Industrial Automation DIALink Stored Cross Site Scripting Vulnerability (CVE-2021-38428) 5.5R5 or above Click here for more information
334016 Nagios XI Switch Wizard Remote Code Execution Vulnerability(CVE-2021-37344) 5.0R4 or above Click here for more information
333876 Micro Focus Secure Messaging Gateway SQL Injection Vulnerability (CVE-2018-12464) 5.5R8 or above Click here for more information
330183 WordPress Plugin Plainview Activity Monitor Authenticated Command Injection Vulnerability (CVE-2018-15877) 5.5R5 or above Click here for more information
338179 OpenMetadata Authentication Bypass Vulnerability (CVE-2024-28255) 5.5R8 or above Click here for more information