IPS Signature Database Update

Name ips.sig
Version 3.0.123
StoneOS Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above
Release Date 2022-08-29
New Signature
(46)		 Rule ID Rule Name StoneOS Detail
714357 SaltStack Salt ClearFuncs Directory Traversal Vulnerability (CVE-2020-11652) 5.0R4 or above click for more information
336972 Rocket Chat Remote Code Execution Vulnerability (CVE-2021-22911) 5.5R5 or above click for more information
713802 Ghostscript Failed Restore Command Execution Vulnerability (CVE-2018-16509) 5.0R4 or above click for more information
336982 Apache Skywalking 8.3.0 SQL Injection Vulnerability 5.0R4 or above click for more information
336961 Django SQL Injection Vulnerability (CVE-2022-34265) 5.0R4 or above click for more information
336968 Gitea 1.4.0 Path Traversal Vulnerability 5.0R4 or above click for more information
336978 Nginx Parsing Error Remote Code Execution Vulnerability 5.0R4 or above click for more information
323846 Ghostscript Failed Restore Command Execution Vulnerability (CVE-2018-16509) 5.0R4 or above click for more information
336989 Tool Ysoserial Java Deserialization Payload Detected 5.0R4 or above click for more information
105661 Tool BurpSuite DNSLog Platform Detected 5.0R4 or above click for more information
336964 Docker Daemon API Unauthorized Access Vulnerability 5.0R4 or above click for more information
1605137 MySQL/MariaDB memcmp() SSE authentication bypass Vulnerability (CVE-2012-2122) 5.5R5 or above click for more information
336975 Suspicious Command Injection Detected 5.0R4 or above click for more information
334041 Alibaba Nacos AuthFilter Authentication Bypass Vulnerability (CVE-2021-29441) 5.0R4 or above click for more information
711200 Zabbix Agent Net.tcp.listen Command Injection Vulnerability -3 (CVE-2009-4502) 5.0R4 or above click for more information
336960 Flask Jinja2 Template Injection Vulnerability 5.5R5 or above click for more information
336971 Apache SSI Remote Code Execution Vulnerability 5.0R4 or above click for more information
330398 ACME mini_httpd Arbitrary File Read Vulnerability (CVE-2018-18778) 5.0R4 or above click for more information
336988 Adobe ColdFusion Deserialization Vulnerability (CVE-2017-3066) 5.0R4 or above click for more information
715644 Redis Post Exploitation Vulnerability 5.0R4 or above click for more information
......
Updated Signature
(41)		 Rule ID Rule Name StoneOS Detail
333423 Zabbix Remote Code Execution Vulnerability (CVE-2020-11800) 5.0R4 or above Click here for more information
330454 Hadoop YARN ResourceManager Unauthenticated Command Execution Vulnerability 5.0R4 or above Click here for more information
335200 Jetty ConcatServlet Sensitive File Download Vulnerability (CVE-2021-28169) 5.0R4 or above Click here for more information
312821 Apache Activemq Fileserver File Upload Directory Traversal Vulnerability -2 (CVE-2016-3088) 5.0R4 or above Click here for more information
330184 Spring Data REST PATCH Request Remote Code Execution Vulnerability (CVE-2017-8046) 5.0R4 or above Click here for more information
312095 Netbsd Tnftp Fetch.c Fetch_url Command Execution Vulnerability -3 (CVE-2014-8517) 5.0R4 or above Click here for more information
323763 GitList v0.6.0 Code Injection Vulnerability (CVE-2018-1000533) 5.0R4 or above Click here for more information
321798 Attempted Spring Data Remote Code Execution Vulnerability -1 (CVE-2018-1273) 5.0R4 or above Click here for more information
336861 SQL Injection Detected 5.5R5 or above Click here for more information
713779 PostgreSQL COPY FROM PROGRAM Command Execution Vulnerability (CVE-2019-9193) 5.0R4 or above Click here for more information
330225 Supervisor XML-RPC Authenticated Remote Code Execution Vulnerability (CVE-2017-11610) 5.0R4 or above Click here for more information
330180 Drupal Core PHP Deserialization Remote Code Execution Vulnerability (CVE-2018-7600) 5.0R4 or above Click here for more information
333979 Spring boot Security OAuth Remote Code Execution Vulnerability (CVE-2016-4977) 5.0R4 or above Click here for more information
715093 Hadoop Yarn RPC Unauthorized Remote Code Execution 5.0R4 or above Click here for more information
333667 TikiWiki CMS Authentication Bypass Vulnerability (CVE-2020-15906) 5.5R5 or above Click here for more information
335414 Drupal core 8 PECL YAML Parser Remote Code Execution Vulnerability (CVE-2017-6920) 5.0R4 or above Click here for more information
323853 Zabbix toggle_ids SQL Injection Vulnerability (CVE-2016-10134) 5.5R5 or above Click here for more information
321825 ElasticSearch Directory Traversal Vulnerability (CVE-2015-3337) 5.0R4 or above Click here for more information
331252 Oracle WebLogic Remote Code Execution Bypass Vulnerability (CVE-2020-14882 CVE-2020-14883 CVE-2020-14750) 5.0R4 or above Click here for more information
336887 Shellshock Remote Command Injection Vulnerability (CVE-2014-6271) 5.0R4 or above Click here for more information
......