IPS Signature Database Update

Name ips.sig
Version 3.0.205
StoneOS Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above
Release Date 2024-05-06
New Signature
(15)		 Rule ID Rule Name StoneOS Detail
337964 RuoYi Suspicious Timed Task Detection 5.0R4 or above click for more information
337965 GitLab Path Traversal Vulnerability (CVE-2023-2825) 5.5R5 or above click for more information
337962 74CMS Arbitrary File Write Vulnerability 5.0R4 or above click for more information
337972 Insecure Java Deserialization Class BeanUtils Detection 5.0R4 or above click for more information
337963 74CMS Local File Inclusion Vulnerability 5.0R4 or above click for more information
716914 Apache Solr JMX Service Remote Code Execution Vulnerability -2 (CVE-2019-12409) 5.0R4 or above click for more information
337960 GetSimpleCMS authorization.xml Information Disclosure Vulnerability 5.0R4 or above click for more information
716915 Oracle WebLogic Insecure Deserialization Vulnerability (CVE-2020-14825) 5.0R4 or above click for more information
337970 Apache Kylin Remote Code Execution Vulnerability (CVE-2020-1956) 5.0R4 or above click for more information
337961 GetSimpleCMS admin.xml Information Disclosure Vulnerability 5.0R4 or above click for more information
337971 JFrog Artifactory 6.7.3 Admin Login Bypass Vulnerability -2 (CVE-2019-9733) 5.0R4 or above click for more information
716913 Suspicious Java Deserialization Detection - RMI 5.0R4 or above click for more information
337968 Juice Shop Chatbot Command Injection Vulnerability 5.0R4 or above click for more information
337959 Oracle WebLogic Insecure Deserialization Vulnerability (CVE-2020-14825) 5.0R4 or above click for more information
337969 Juice Shop api-docs Deserialization Vulnerability 5.0R4 or above click for more information
Updated Signature
(26)		 Rule ID Rule Name StoneOS Detail
310767 XAMPP CVE-2013-2586 Arbitrary File Write Vulnerability (CVE-2013-2586) 5.0R4 or above Click here for more information
333644 Spring-boot-actuator-logview Library Directory Traversal Vulnerability (CVE-2021-21234) 5.0R4 or above Click here for more information
323926 rConfig ajaxServerSettingsChk.php Command Injection Vulnerability (CVE-2019-16662) 5.5R8 or above Click here for more information
335391 Sonatype Nexus Repository Manager Expression Language Injection Vulnerability (CVE-2018-16621) 5.0R4 or above Click here for more information
321798 Attempted Spring Data Remote Code Execution Vulnerability -1 (CVE-2018-1273) 5.0R4 or above Click here for more information
330222 Huawei HG532 Router Remote Command Execution Vulnerability (CVE-2017-17215) 5.0R4 or above Click here for more information
330917 ThinkCMF Alias Parameter Arbitrary Code Execution Vulnerability (CVE-2019-7580) 5.5R5 or above Click here for more information
335439 Dedecms recommend.php SQL Injection Vulnerability (CVE-2017-17731) 5.0R4 or above Click here for more information
330979 OKLite v1.2.25 File Upload Vulnerability (CVE-2019-16131) 5.5R5 or above Click here for more information
714523 Apache Tomcat WebSocket Denial of Service Vulnerability (CVE-2020-13935) 5.5R5 or above Click here for more information
337586 Smartbi Remote Command Execution Vulnerability 5.0R4 or above Click here for more information
715569 Apache CouchDB Erlang Cookie Remote Code Execution Vulnerability (CVE-2022-24706) 5.0R4 or above Click here for more information
330183 WordPress Plugin Plainview Activity Monitor Authenticated Command Injection Vulnerability (CVE-2018-15877) 5.5R8 or above Click here for more information
337050 Tool Pikachu Unsafe File Upload Detected 5.5R5 or above Click here for more information
335382 EmpireCMS v7.5 Arbitrary File Upload Vulnerability (CVE-2018-18086) 5.0R4 or above Click here for more information
716897 Apache RocketMQ 5.1.0 Remote Code Execution Vulnerability (CVE-2023-33246) 5.0R4 or above Click here for more information
337589 NginxWebUI Remote Code Execution Vulnerability 5.0R4 or above Click here for more information
331251 ThinkAdmin ModuleService.php checkAllowDownload Function Directory Traversal Vulnerability (CVE-2020-25540) 5.0R4 or above Click here for more information
333444 RuoYi Arbitrary File Read Vulnerability 5.0R4 or above Click here for more information
337592 Smartbi windowUnloading Authentication Bypass Vulnerability 5.0R4 or above Click here for more information
......