IPS Signature Database Update
| Name | ips.sig | |||
| Version | 3.0.115 | |||
| StoneOS | Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above | |||
| Release Date | 2022-07-04 | |||
| New Signature (8) |
Rule ID | Rule Name | StoneOS | Detail |
| 336696 | WordPress Plugin Google Tag Manager Cross Site Scripting Vulnerability (CVE-2022-1707) | 5.0R4 or above | click for more information | |
| 715587 | Schneider Electric IGSSdataServer.exe Buffer Overflow Vulnerability (CVE-2022-24313) | 5.5R4 or above | click for more information | |
| 336697 | Mitel MiVoice Connect Input Validation Error Remote Code Execution Vulnerability (CVE-2022-29499) | 5.5R4 or above | click for more information | |
| 336694 | JAVA Remote Process Call Vulnerability -4 | 5.0R4 or above | click for more information | |
| 336695 | OMRON CX-One Buffer Error Remote Code Execution Vulnerability (CVE-2022-21137) | 5.0R4 or above | click for more information | |
| 336683 | HP Universal CMDB JMX Console Authentication Bypass Vulnerability (CVE-2014-7883) | 5.0R4 or above | click for more information | |
| 336693 | JAVA Remote Process Call Vulnerability -3 | 5.0R4 or above | click for more information | |
| 336698 | iRZ Mobile Router Cross Site Request Forgery Vulnerability (CVE-2022-27226) | 5.0R4 or above | click for more information | |
| Updated Signature (17) |
Rule ID | Rule Name | StoneOS | Detail |
| 705397 | HP Database Archiving Software GIOP Opcode 0x0E Buffer Overflow Vulnerability -1 (CVE-2011-4163) | 5.5R4 or above | Click here for more information | |
| 710496 | Microsoft Windows PDF Library Memory Corruption Vulnerability (CVE-2016-3319) | 5.0R4 or above | Click here for more information | |
| 330307 | Wordpress Drag and Drop Multi File Uploader RCE Vulnerability (CVE-2020-12800) | 5.0R4 or above | Click here for more information | |
| 310912 | Elasticsearch Arbitrary Java Code Execution Vulnerability (CVE-2014-3120) | 5.5R5 or above | Click here for more information | |
| 322826 | Atlassian Crowd Input Validation Error Vulnerability (CVE-2019-11580) | 5.0R4 or above | Click here for more information | |
| 321825 | ElasticSearch Directory Traversal Vulnerability (CVE-2015-3337) | 5.0R4 or above | Click here for more information | |
| 336660 | VanDyke VShell Server Trigger Arbitrary Code Execution Vulnerability (CVE-2022-28054) | 5.5R5 or above | Click here for more information | |
| 333589 | Windows HTTP Protocol Stack Remote Code Execution Vulnerability (CVE-2021-31166) | 5.0R4 or above | Click here for more information | |
| 330176 | PHPMailer Sender Field Improper Patch Command Injection Vulnerability (CVE-2016-10045) | 5.0R4 or above | Click here for more information | |
| 334066 | Joomla! CMS mod_breadcrumbs Title Stored Cross Site Scripting Vulnerability (CVE-2021-23124) | 5.0R4 or above | Click here for more information | |
| 324329 | EMC VMAX VASA Provider Virtual Appliance File Upload RCE Vulnerability (CVE-2017-4997) | 5.0R4 or above | Click here for more information | |
| 330268 | HPE Intelligent Management Center flexFileUpload Arbitrary File Upload Vulnerability (CVE-2017-8961) | 5.5R5 or above | Click here for more information | |
| 333427 | Nagios XI 5.7.5 Remote Code Execution Vulnerability (CVE-2021-25297 CVE-2021-25298) | 5.0R4 or above | Click here for more information | |
| 305702 | WordPress Quick Post Widget Plugin Cross Site Scripting and Cross Site Request Forgery Vulnerability (CVE-2012-4226) | 5.0R4 or above | Click here for more information | |
| 336204 | Nagios XI Path Traversal Vulnerability (CVE-2021-37343) | 5.0R4 or above | Click here for more information | |
| 805701 | Solaris rwalld Format String Vulnerability (CVE-2002-0573) | 5.0R4 or above | Click here for more information | |
| 315758 | Digium Asterisk Cookie Stack Overflow Vulnerability -2 (CVE-2014-2286) | 5.5R4 or above | Click here for more information | |