IPS Signature Database Update
| Name | ips.sig | |||
| Version | 3.0.134 | |||
| StoneOS | Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above | |||
| Release Date | 2022-11-14 | |||
| New Signature (14) |
Rule ID | Rule Name | StoneOS | Detail |
| 337135 | WordPress Mailpress Plugin Remote Code Execute Vulnerability | 5.5R5 or above | click for more information | |
| 337122 | Pyspider Unauthorized Access Remote Code Execution | 5.0R4 or above | click for more information | |
| 337132 | Primeton EOS Remote Code Execution Vulnerability | 5.5R5 or above | click for more information | |
| 337123 | QiHang Media Web Arbitrary File Disclosure | 5.0R4 or above | click for more information | |
| 337133 | Lianruan Technology Access System File Upload Vulnerability | 5.5R5 or above | click for more information | |
| 337120 | Zabbix Arbitrary Code Execution vulnerability (CVE-2021-46088) | 5.0R4 or above | click for more information | |
| 337130 | Primeton EOS Remote Code Execution Vulnerability | 5.0R4 or above | click for more information | |
| 337121 | OptiLink ONT1GEW GPON Remote Code Execution | 5.0R4 or above | click for more information | |
| 337131 | TongWeb Default Account and Password Detected | 5.0R4 or above | click for more information | |
| 337128 | eYou Mail Command Execution Vulnerability | 5.5R5 or above | click for more information | |
| 337129 | FasterXML Jackson-databind Remote Code Execution Vulnerability | 5.5R8 or above | click for more information | |
| 337126 | Twig PHP <2.4.4 template engine SSTI | 5.0R4 or above | click for more information | |
| 337134 | Node.JS -node-serialize Remote Code Execution Vulnerability (CVE-2017-5941) | 5.5R5 or above | click for more information | |
| 337125 | Kiwi TCMS Information Disclosure | 5.0R4 or above | click for more information | |
| Updated Signature (16) |
Rule ID | Rule Name | StoneOS | Detail |
| 335288 | FasterXML Jackson-databind Remote Code Execution Vulnerability (CVE-2020-11111) | 5.5R5 or above | Click here for more information | |
| 333448 | Weaver OA V8 SQL Injection Vulnerability | 5.5R5 or above | Click here for more information | |
| 330225 | Supervisor XML-RPC Authenticated Remote Code Execution Vulnerability (CVE-2017-11610) | 5.0R4 or above | Click here for more information | |
| 336227 | Kingsoft V8 Arbitrary File Download Vulnerability | 5.5R5 or above | Click here for more information | |
| 321921 | Spring Web Flow SPEL Command Injection Vulnerability (CVE-2017-4971) | 5.5R5 or above | Click here for more information | |
| 335220 | Weblogic Unauthorized Access Vulnerability (CVE-2021-2211) | 5.0R4 or above | Click here for more information | |
| 330398 | ACME mini_httpd Arbitrary File Read Vulnerability (CVE-2018-18778) | 5.0R4 or above | Click here for more information | |
| 337109 | Zabbix Authentication Bypass | 5.5R5 or above | Click here for more information | |
| 105650 | Tool DNSLog Platform dnslog.cn Detected | 5.5R5 or above | Click here for more information | |
| 320560 | Supervisor XML-RPC Authenticated Remote Code Execution Vulnerability (CVE-2017-11610) | 5.0R4 or above | Click here for more information | |
| 335283 | Tenda Router Arbitrary Code Execution Vulnerability (CVE-2020-13389) | 5.5R5 or above | Click here for more information | |
| 335216 | Weblogic Remote Code Execution Vulnerability (CVE-2021-2294) | 5.0R4 or above | Click here for more information | |
| 336871 | PHPStudy Code Injection Vulnerability | 5.5R5 or above | Click here for more information | |
| 330010 | SQL Server Reporting Services (SSRS) ViewState Deserialization Vulnerability (CVE-2020-0618) | 5.5R5 or above | Click here for more information | |
| 333461 | Node.JS -node-serialize Remote Code Execution Vulnerability (CVE-2017-5941) | 5.5R5 or above | Click here for more information | |
| 334138 | Generic XML External Entity Injection Vulnerability | 5.5R5 or above | Click here for more information | |