IPS Signature Database Update
| Name | ips.sig | |||
| Version | 3.0.250 | |||
| StoneOS | Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above | |||
| Release Date | 2025-03-31 | |||
| New Signature (11) |
Rule ID | Rule Name | StoneOS | Detail |
| 338767 | Vite 6.2.2 Arbitrary File Read Vulnerability (CVE-2025-30208) | 5.5R5 or above | click for more information | |
| 338764 | FlowiseAI 2.2.6 Loader Process Abitrary File Upload Vulnerability | 5.0R4 or above | click for more information | |
| 338755 | Open WebUI Authority Bypass Vulnerability (CVE-2024-7049) | 5.5R5 or above | click for more information | |
| 338760 | vLLM Denial of Service Vulnerability (CVE-2024-8939) | 5.5R8 or above | click for more information | |
| 338761 | vLLM Denial of Service Vulnerability (CVE-2024-8768) | 5.5R8 or above | click for more information | |
| 338758 | Open WebUI Directory Traversal Vulnerability (CVE-2024-7037) | 5.0R4 or above | click for more information | |
| 338768 | Next.js Middleware Authentication Bypass Vulnerability (CVE-2025-29927) | 5.5R5 or above | click for more information | |
| 338759 | Open WebUI Directory Traversal Vulnerability (CVE-2024-6707) | 5.0R4 or above | click for more information | |
| 338756 | Open WebUI Authority Bypass Vulnerability (CVE-2024-7049) | 5.5R5 or above | click for more information | |
| 338766 | FlowiseAI 2.2.6 Arbitrary File Upload Vulnerability (CVE-2025-26319) | 5.0R4 or above | click for more information | |
| 338757 | Open WebUI Infomation Leakage Vulnerability (CVE-2024-7038) | 5.0R4 or above | click for more information | |
| Updated Signature (5) |
Rule ID | Rule Name | StoneOS | Detail |
| 505884 | Roundcube Webmail rcube_washtml.php Cross-Site Scripting Vulnerability (CVE-2023-5631) | 5.5R5 or above | Click here for more information | |
| 323946 | Nostromo nhttpd http_verify Directory Traversal Vulnerability (CVE-2019-16278) | 5.5R5 or above | Click here for more information | |
| 338683 | Sangfor NGAF loadfile.php Arbitrary File Read Vulnerability | 5.0R4 or above | Click here for more information | |
| 335222 | XStream CPU Denial of Service Vulnerability (CVE-2021-21341) | 5.0R4 or above | Click here for more information | |
| 330010 | SQL Server Reporting Services (SSRS) ViewState Deserialization Vulnerability (CVE-2020-0618) | 5.5R5 or above | Click here for more information | |