IPS Signature Database Update
| Name | ips.sig | |||
| Version | 2.1.607 | |||
| StoneOS | StoneOS 5.0R4F3.1 or above | |||
| Release Date | 2025-05-19 | |||
| New Signature (78) |
Rule ID | Rule Name | StonesOS | Detail |
| 338884 | Craft Remote Command Execution Vulnerability (CVE-2025-32432) | 5.5R5 or above | click for more information | |
| 105379 | Ransomware Activity: TeslaCrypt/AlphaCrypt Payment DNS Lookup | 5.5R5 or above | click for more information | |
| 338892 | Renwoxing CRM viewaccountBase.asp SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 105561 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105356 | Ransomware Activity: TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain (iq3ahijcfeont3xx) | 5.5R5 or above | click for more information | |
| 105552 | Ransomware Activity: ABUSE.CH TorrentLocker Payment Domain (2ymh2gnnbg6pgq2r) | 5.5R5 or above | click for more information | |
| 332573 | Trojan Activity: Generic XBALTI Phishing Landing | 5.5R5 or above | click for more information | |
| 105550 | Trojan Activity: Magecart CnC Domain Observed in DNS Query | 5.5R5 or above | click for more information | |
| 338887 | PandoraFMS console v7.0NG.772 SQL Injection Vulnerability (CVE-2023-44088) | 5.5R5 or above | click for more information | |
| 105572 | Trojan Activity: LYCEUM CnC Domain Observed in DNS Query | 5.5R5 or above | click for more information | |
| 105362 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105354 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 332754 | Ransomware Activity: Cerber Blockchain Query 2 | 5.5R5 or above | click for more information | |
| 105377 | Ransomware Activity: ABUSE.CH Ransomware/Cerber Onion Domain Lookup | 5.5R5 or above | click for more information | |
| 105564 | Trojan Activity: FIN8 ShellTea CnC in DNS Query | 5.5R5 or above | click for more information | |
| 338886 | ChurchCRM GetText.php SQL Injection Vulnerability (CVE-2024-39304) | 5.5R5 or above | click for more information | |
| 105568 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 338901 | NetMizer hostipreport.php Remote Code Execution Vulnerability | 5.0R4 or above | click for more information | |
| 105374 | Trojan Activity: FatDuke Domain Observed | 5.5R5 or above | click for more information | |
| 332571 | Ransomware Activity: Quant Loader Download Response | 5.5R5 or above | click for more information | |
| ...... | ||||
| Updated Signature (3) |
Rule ID | Rule Name | StonesOS | Detail |
| 338817 | Ray Code Injection Vulnerability (CVE-2023-0297) | 5.5R5 or above | Click here for more information | |
| 338820 | Pyload Cross-Site Scripting Vulnerability (CVE-2023-0488) | 5.5R5 or above | Click here for more information | |
| 338819 | Ray Operating System Command Injection Vulnerability (CVE-2023-6019) | 5.5R5 or above | Click here for more information | |