IPS Signature Database Update

Name	ips.sig
Version	2.1.603
StoneOS	StoneOS 5.0R4F3.1 or above
Release Date	2025-04-21
New Signature (101)	Rule ID	Rule Name	StonesOS	Detail
	714758	Trojan Activity: ATTACK_RESPONSE LaZagne Artifact Outbound in FTP	5.5R5 or above	click for more information
	338795	Kubeflow Cross-Site Scripting Vulnerability (CVE-2023-6571)	5.0R4 or above	click for more information
	105490	Ransomware Activity: Win32/Teslacrypt Ransomware .onion domain	5.5R5 or above	click for more information
	338801	Apache HugeGraph Server 1.2.0 Remote Code Execution Vulnerability (CVE-2024-27348)	5.0R4 or above	click for more information
	105506	Ransomware Activity: ABUSE.CH Locky C2 Domain	5.5R5 or above	click for more information
	332736	Trojan Activity: Observed Magecart CnC Domain in TLS SNI	5.0R4 or above	click for more information
	105540	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	105501	Ransomware Activity: Possible WannaCry DNS Lookup 3	5.5R5 or above	click for more information
	1908981	Ransomware Activity: Locky Ransomware Writing Instructions via SMB	5.5R5 or above	click for more information
	105528	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	332729	Trojan Activity: Malicious SSL Cert (Magecart)	5.5R5 or above	click for more information
	332690	Trojan Activity: Observed Malicious SSL Cert (Sidewinder APT CnC)	5.5R5 or above	click for more information
	105543	Trojan Activity: PS/PowerRatankba CnC DNS Lookup	5.5R5 or above	click for more information
	105496	Ransomware Activity: ABUSE.CH Ransomware Domain Detected (Locky Payment)	5.5R5 or above	click for more information
	105526	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	105485	Ransomware Activity: CryptoLocker .onion Proxy Domain (6i3cb6owitcouepv)	5.5R5 or above	click for more information
	105531	Ransomware Activity: Iron Ransomware Domain	5.5R5 or above	click for more information
	105512	Ransomware Activity: ABUSE.CH Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	105538	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	338799	DocsGPT 0.12.0 Remote Code Execution Vulnerability (CVE-2025-0868)	5.0R4 or above	click for more information
	......
Updated Signature (4)	Rule ID	Rule Name	StonesOS	Detail
	335312	Pandora FMS Arbitrary Command Injection Vulnerability (CVE-2019-20224)	5.5R5 or above	Click here for more information
	336220	UCMS v1.4.8 File Upload Arbitrary Command Execution Vulnerability (CVE-2020-25483)	5.5R5 or above	Click here for more information
	336126	Citrix Systems Cross Site Scripting Vulnerability (CVE-2020-8191)	5.0R4 or above	Click here for more information
	336197	WordPress admin-ajax.php XSS Vulnerability (CVE-2022-21662)	5.5R5 or above	Click here for more information