IPS Signature Database Update
| Name | ips.sig | |||
| Version | 2.1.621 | |||
| StoneOS | StoneOS 5.0R4F3.1 or above | |||
| Release Date | 2025-08-25 | |||
| New Signature (22) |
Rule ID | Rule Name | StonesOS | Detail |
| 717164 | Suspicious C2 Stage Detection - TCP Download | 5.0R4 or above | click for more information | |
| 339383 | Esafenet CDG API WorkFlowAction SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339393 | Hwzy99 Smart Park Platform getGroupEmployee.do SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339390 | Hwzy99 Smart Park Platform queryAlarmEvent.do SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339386 | Bianque Medical System GetLyfsByParams SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339396 | Acrel Intelligent Environmental Protection Cloud Platform API getmonitorrealdata SQL Injection Vulnerability | 5.0R4 or above | click for more information | |
| 339382 | Esafenet CDG API HookWhiteListservice SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339389 | Kingdee Apusic Application Server loadTree JNDI Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339399 | Tool Supershell Detection - HTTP Login | 5.5R5 or above | click for more information | |
| 717166 | Tool Supershell Detection - SSH Tunnel Connection | 5.5R5 or above | click for more information | |
| 339385 | Topvision Yibao OA API getPosition SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339395 | Weaver OA API remarkOperate Remote Command Execution Vulnerability | 5.0R4 or above | click for more information | |
| 339381 | Yonyou Chanjet CRM newleadset.php SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 339388 | Lenovo Cloud Disk API write Arbitrary File Upload Vulnerability | 5.5R5 or above | click for more information | |
| 339398 | Suspicious SSH-over-WebSocket Tunnel Detection | 5.0R4 or above | click for more information | |
| 339384 | Hwzy99 Smart Park Platform getDoors.do SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 717165 | Tool Viper Detection - TCP KeepAlive | 5.5R5 or above | click for more information | |
| 339380 | Qiyuesuo Signature And Seal System API dbtest Remote Command Execution Vulnerability | 5.0R4 or above | click for more information | |
| 339391 | Weaver OA block_content.php SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 717169 | Suspicious SSH-over-WebSocket Tunnel Detection | 5.0R4 or above | click for more information | |
| ...... | ||||
| Updated Signature (7) |
Rule ID | Rule Name | StonesOS | Detail |
| 330456 | Microsoft Windows CAB File Parsing Directory Traversal Vulnerability (CVE-2020-1300) | 5.5R4 or above | Click here for more information | |
| 714732 | Mining Activity[BitCoin]: W32/BitCoinMiner.MultiThreat Subscribe/Authorize Stratum Protocol Message | 5.5R5 or above | Click here for more information | |
| 337015 | Tool Ysoserial Detection - URLDNS | 5.0R4 or above | Click here for more information | |
| 715655 | Tool Ysoserial Detection - URLDNS | 5.0R4 or above | Click here for more information | |
| 715402 | Mining Activity[Ether]: Ethereum Work Submit | 5.5R5 or above | Click here for more information | |
| 712733 | Mining Activity[Multi Currency]: Suspicious Mining Activities | 5.5R5 or above | Click here for more information | |
| 715401 | Mining Activity[Ether]: Ethereum Login | 5.5R5 or above | Click here for more information | |