New Filters:
46095: HTTP: Apache OFBiz Referer Stored Cross-Site Scripting Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a stored cross-site scripting vulnerability in Apache OFBiz.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2025-30676 CVSS 5.3
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: July 01, 2025
46096: HTTP: WordPress Kubio AI Page Builder Plugin template Local File Inclusion Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a local file inclusion vulnerability in the WordPress Kubio AI Page Builder plugin.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2025-2294 CVSS 8.8
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: July 01, 2025
46098: ZDI-CAN-24915: Zero Day Initiative Vulnerability (Marvell QConvergeConsole)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: Not available.
- Requires: IPS N-Platform, NX-Platform, or TPS models.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter protects against the exploitation of a zero-day vulnerability affecting Marvell QConvergeConsole.
- Deployments:
- Deployment: Security-Optimized (Block / Notify / Trace)
- Classification: Vulnerability - Other
- Protocol: Other Protocol
- Platform: Other Server Application or Service
- Release Date: July 01, 2025
46099: ZDI-CAN-26864: Zero Day Initiative Vulnerability (Ivanti Endpoint Manager)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: Not available.
- Requires: IPS N-Platform, NX-Platform, or TPS models.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter provides protection against exploitation of a zero-day vulnerability affecting Ivanti Endpoint Manager.
- Deployments:
- Deployment: Security-Optimized (Block / Notify / Trace)
- Classification: Vulnerability - Other
- Protocol: Other Protocol
- Platform: Other Server Application or Service
- Release Date: July 01, 2025
46100: ZDI-CAN-27260: Zero Day Initiative Vulnerability (PDFSam Enhanced)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: Not available.
- Requires: IPS N-Platform, NX-Platform, or TPS models.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter provides protection against exploitation of a zero-day vulnerability affecting PDFSam Enhanced.
- Deployments:
- Deployment: Security-Optimized (Block / Notify / Trace)
- Classification: Vulnerability - Other
- Protocol: Other Protocol
- Platform: Other Server Application or Service
- Release Date: July 01, 2025
46101: HTTP: Fortinet Multiple Products cookieval_unwrap Stack Buffer Overflow
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a buffer overflow vulnerability in multiple Fortinet products.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Evaluation (Permit / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2025-32756 CVSS 9.1
- Classification: Vulnerability - Buffer/Heap Overflow
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: July 01, 2025
46103: HTTP: NI G Web Development GWEBPROJECT Insecure Deserialization Vulnerability (ZDI-25-128)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a insecure deserialization vulnerability in NI G Web Development.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2024-12742 CVSS 7.8
- Zero Day Initiative: ZDI-25-128
- Classification: Vulnerability - Other
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: July 01, 2025
46104: HTTP: MotionEye Command Injection Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a command injection vulnerability in MotionEye.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Evaluation (Permit / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2025-47782
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Networked Hardware Device Application or Service
- Release Date: July 01, 2025
46106: ZDI-CAN-26616: Zero Day Initiative Vulnerability (Apple Safari)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: Not available.
- Requires: IPS N-Platform, NX-Platform, or TPS models.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter provides protection against exploitation of a zero-day vulnerability affecting Apple Safari.
- Deployments:
- Deployment: Default (Block / Notify / Trace)
- Deployment: Evaluation (Permit / Notify / Trace)
- Classification: Vulnerability - Other
- Protocol: Other Protocol
- Platform: Other Server Application or Service
- Release Date: July 01, 2025
46107: ZDI-CAN-27181: Zero Day Initiative Vulnerability (NVIDIA Triton)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: Not available.
- Requires: IPS N-Platform, NX-Platform, or TPS models.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter protects against the exploitation of a zero-day vulnerability affecting NVIDIA Triton.
- Deployments:
- Deployment: Default (Block / Notify / Trace)
- Deployment: Evaluation (Permit / Notify / Trace)
- Classification: Vulnerability - Other
- Protocol: Other Protocol
- Platform: Other Server Application or Service
- Release Date: July 01, 2025
46113: SMB: Linux Kernel ksmbd Session Setup Reauthentication Use-After-Free Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a use-after-free vulnerability in the Linux kernel KSMBD.
- Deployment: Not enabled by default in any deployment.
- References:
- Common Vulnerabilities and Exposures: CVE-2025-37778
- Classification: Vulnerability - Other
- Protocol: SMB
- Platform: UNIX/Linux Server Application or Service
- Release Date: July 01, 2025
46114: HTTP: Suspicious Content-Disposition Headers Value
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Security Policy
- Severity: Moderate
- Description: This filter detects multiple Content-Disposition headers with conflicting values in an HTTP request.
- Deployment: Not enabled by default in any deployment.
- References:
- Common Vulnerabilities and Exposures: CVE-2025-32911
- Classification: Security Policy - Other
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: July 01, 2025
46115: ZDI-CAN-26861: Zero Day Initiative Vulnerability (Ivanti Endpoint Manager)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: Not available.
- Requires: IPS N-Platform, NX-Platform, or TPS models.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter provides protection against exploitation of a zero-day vulnerability affecting Ivanti Endpoint Manager.
- Deployments:
- Deployment: Default (Block / Notify / Trace)
- Deployment: Evaluation (Permit / Notify / Trace)
- Classification: Vulnerability - Other
- Protocol: Other Protocol
- Platform: Other Server Application or Service
- Release Date: July 01, 2025
46117: ZDI-CAN-27121: Zero Day Initiative Vulnerability (Cisco Identity Services Engine)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: Not available.
- Requires: IPS N-Platform, NX-Platform, or TPS models.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter provides protection against exploitation of a zero-day vulnerability affecting Cisco Identity Services Engine.
- Deployments:
- Deployment: Default (Block / Notify / Trace)
- Deployment: Evaluation (Permit / Notify / Trace)
- Classification: Vulnerability - Other
- Protocol: Other Protocol
- Platform: Other Server Application or Service
- Release Date: July 01, 2025
Modified Filters (logic changes):
* = Enabled in Default deployments
12090: HTTP: Apache Struts 2 CookieInterceptor OGNL Script Injection
- IPS Version: 3.1.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: February 14, 2012
- Last Modified Date: July 01, 2025
12311: HTTP: Microsoft Excel ObjectLink Memory Corruption Vulnerability
- IPS Version: 3.2.2 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Release Date: May 08, 2012
- Last Modified Date: July 01, 2025
12701: HTTP: Apple QuickTime PICT File Processing Memory Corruption Vulnerability
- IPS Version: 3.2.2 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Release Date: January 15, 2013
- Last Modified Date: July 01, 2025
12906: HTTP: Microsoft Office Works File Converter Heap Overflow
- IPS Version: 3.2.2 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: May 14, 2013
- Last Modified Date: July 01, 2025
13525: HTTP: Microsoft Internet Explorer SVG Use-After-Free Vulnerability
- IPS Version: 3.1.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Detection logic updated.
- Release Date: February 11, 2014
- Last Modified Date: July 01, 2025
13546: HTTP: Microsoft Internet Explorer Uninitialized Object Use-After-Free Vulnerability
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Detection logic updated.
- Release Date: February 11, 2014
- Last Modified Date: July 01, 2025
16226: HTTP: Dell ScriptLogic Asset Manager GetProcessedPackage SQL Injection Vulnerability (ZDI-15-049)
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: June 03, 2014
- Last Modified Date: July 01, 2025
17004: HTTP: NetBSD tnftp Command Execution Vulnerability
- IPS Version: 3.2.2 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Release Date: November 18, 2014
- Last Modified Date: July 01, 2025
* 19862: LDAP: OpenLDAP slapd Deref Overlay Null Pointer Dereference Vulnerability
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: May 26, 2015
- Last Modified Date: July 01, 2025
20022: HTTP: cURL and libcurl Cookie Path Parsing Remote Code Execution Vulnerability
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: July 07, 2015
- Last Modified Date: July 01, 2025
20120: HTTP: Panasonic Security API SDK MulticastAddr Usage (ZDI-15-261)
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: July 28, 2015
- Last Modified Date: July 01, 2025
20316: HTTP: Microsoft Internet Explorer Error Object Use-After-Free Vulnerability
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: August 11, 2015
- Last Modified Date: July 01, 2025
21200: HTTP: Microsoft Internet Explorer onMouseMove Use-After-Free Vulnerability
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Detection logic updated.
- Release Date: October 13, 2015
- Last Modified Date: July 01, 2025
* 44487: HTTP: Ivanti Endpoint Manager Report_RunPatch SQL Injection Vulnerability (ZDI-24-1502)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Detection logic updated.
- Release Date: July 09, 2024
- Last Modified Date: July 01, 2025
* 45784: SSH: Ericsson Erlang OTP SSH Server Authentication Bypass Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Detection logic updated.
- Deployments updated and are now:
- Deployment: Default (Block / Notify)
- Deployment: Evaluation (Permit / Notify)
- Release Date: April 29, 2025
- Last Modified Date: July 01, 2025
* 45811: HTTP: XWiki.org XWiki Query SQL Injection Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Detection logic updated.
- Vulnerability references updated.
- Deployments updated and are now:
- Deployment: Default (Block / Notify)
- Release Date: May 06, 2025
- Last Modified Date: July 01, 2025
Modified Filters (metadata changes only):
* = Enabled in Default deployments
* 46070: HTTP: TBK DVR Command Injection Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Description updated.
- Release Date: June 24, 2025
- Last Modified Date: July 01, 2025
Removed Filters:
2564: IM: ICQ/AOL Messenger Login Response
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: May 07, 2013
2573: IM: ICQ File Transfer/Sharing
- IPS Version: 3.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: April 03, 2007
2728: ICQ: ISS Protocol Analysis Module Overflow (Witty Worm)
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: December 03, 2024
2729: ICQ: ISS Protocol Analysis Module Overflow (General)
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: November 08, 2016
2949: IM: ICQ/AOL Messenger Login Response
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: May 07, 2013
3171: HTTP: Skype callto: URL Buffer Overflow
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: December 03, 2024
3172: POP/IMAP: Skype callto: URL Buffer Overflow
- IPS Version: 3.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: March 29, 2016
3173: SMTP: Skype callto: URL Buffer Overflow
- IPS Version: 3.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
3280: P2P: Skype Program Download
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: October 20, 2008
3281: P2P: Skype Installed/Update Request
- IPS Version: 3.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
3579: HTTPS: ICQ Messenger Connection Attempt
- IPS Version: 3.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: October 13, 2015
3606: IM: ICQ2Go! Web Messenger Login Response
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
- Last Modified Date: May 07, 2013
3610: IM: ICQ2Go! Java Web Messenger Login Request
- IPS Version: 3.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 31, 2005
4725: HTTP: AOL ICQ ActiveX Control Code Execution (ZDI-06-037)
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: October 31, 2006
- Last Modified Date: September 09, 2014
5752: HTTP: Skype skype4com Heap Corruption (ZDI-07-070)
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: December 14, 2007
- Last Modified Date: December 06, 2016
6503: P2P: Skype Program Download
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: October 20, 2008
6519: P2P: Skype Initial Login Request
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: November 14, 2008
- Last Modified Date: September 17, 2009
8328: HTTP: Skype Protocol Handler datapath Argument Injection Vulnerability (ZDI-10-027)
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: March 16, 2010
- Last Modified Date: December 13, 2016
8329: HTTP: Skype URI Processing Arbitrary XML File Deletion Vulnerability (ZDI-10-028)
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: March 16, 2010
- Last Modified Date: December 13, 2016
8497: ICQ: ISS Protocol Analysis Module ICQv5 Parsing Buffer Overflow
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: September 25, 2009
- Last Modified Date: May 12, 2015
8947: HTTP: Skype skype4com URI Handler Remote Heap Corruption (ZDI-07-070)
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: November 02, 2009
- Last Modified Date: December 03, 2024
9079: AIM: Gaim AIM-ICQ Protocol Handling Buffer Overflow
- IPS Version: 1.0.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: November 02, 2009
- Last Modified Date: September 30, 2014
16558: UDP: Skype Login Attempt (Non-Proxied)
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: January 13, 2015
- Last Modified Date: April 10, 2018
16648: SOCKS: Skype Login Attempt (SOCKS5)
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: January 13, 2015
- Last Modified Date: March 29, 2016
16727: HTTPS: Skype Login Attempt (HTTPS Proxy)
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: January 13, 2015
- Last Modified Date: March 29, 2016
16934: HTTPS: Skype Login Attempt (SSL/TLS)
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: January 13, 2015
- Last Modified Date: March 29, 2016
16976: TCP: Skype Login Attempt (Non-Proxied)
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: January 06, 2015
- Last Modified Date: March 29, 2016
20932: HTTPS: Skype for Web Site Access
- IPS Version: 3.1.3 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Release Date: October 13, 2015
- Last Modified Date: October 20, 2015
42031: HTTP: Microsoft Skype Cross-Site Scripting Vulnerability (ZDI-23-1769)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Release Date: December 20, 2022
- Last Modified Date: December 26, 2023
43674: HTTP: Microsoft Skype Protection Mechanism Failure Vulnerability (ZDI-24-293)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Release Date: January 23, 2024
- Last Modified Date: April 02, 2024
|
Welcome to the future of Business Support! I'm Trend Companion, your
AI assistant ready to streamline your experience.
Log in for your personalized support!
Chat with Trend Companion for quick answers, or submit a case for
detailed troubleshooting.