New Filters:
43696: HTTP: 7-Zip 7Z File PPMd Properties Parsing Integer Underflow Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: High
- Description: The filter detects an attempt to exploit an integer underflow vulnerability in 7-Zip.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2023-31102
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Multi-Platform Client Application
- Release Date: February 06, 2024
43720: HTTP: GLPI-Project GLPI Inventory Agent SQL Injection Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a SQL injection vulnerability in the GLPI-Project GLPI.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2023-46727 CVSS 7.5
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: February 06, 2024
43762: HTTP: VinChin Backup and Recovery Command Injection Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a command injection vulnerability in VinChin Backup and Recovery.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2023-45498
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: February 06, 2024
43766: HTTP: Jenkins CI Server Arbitrary File Read Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit an arbitrary file read vulnerability in Jenkins CI Server.
- Deployments:
- Deployment: Default (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2024-23897
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Multi-Platform Server Application or Service
- Release Date: February 06, 2024
43769: HTTP: Arcserve UDP Download and Install Patch Request
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Security Policy
- Severity: Moderate
- Description: This filter detects a request to download and install a patch for Arcserve UDP.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2023-41998 CVSS 9.8
- Classification: Security Policy - Other
- Protocol: HTTP
- Platform: Multi-Platform Client Application
- Release Date: February 06, 2024
43770: HTTP: Wordpress Responsive Cookie Plugin Cross Site Scripting Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Vulnerabilities
- Severity: Critical
- Description: This filter detects an attempt to exploit a cross-site scripting vulnerability in the WordPress Responsive Cookie plugin.
- Deployments:
- Deployment: Security-Optimized (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2018-10309 CVSS 3.5
- Classification: Vulnerability - Input Validation (Command injection, XSS, SQL injection, etc)
- Protocol: HTTP
- Platform: Other Server Application or Service
- Release Date: February 06, 2024
43781: TCP: Ivanti Avalanche WLAvalancheService.exe Type 100 Stack-Buffer Overflow Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Exploits
- Severity: High
- Description: This filter detects an attempt to exploit a buffer overflow vulnerability in Ivanti Avalanche.
- Deployments:
- Deployment: Default (Block / Notify)
- References:
- Common Vulnerabilities and Exposures: CVE-2023-41727
- Classification: Vulnerability - Buffer/Heap Overflow
- Protocol: TCP (Generic)
- Platform: Multi-Platform Server Application or Service
- Release Date: February 06, 2024
Modified Filters (logic changes):
* = Enabled in Default deployments
43278: HTTP: Inductive Automation Ignition ResponseParser Deserialization Vulnerability (ZDI-24-016,017)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "43278: ZDI-CAN-21926,22067: Zero Day Initiative Vulnerability (Inductive Automation Ignition)".
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: September 26, 2023
- Last Modified Date: February 06, 2024
43381: HTTP: Inductive Automation Ignition ExtendedDocumentCodec Deserialization Vulnerability (ZDI-24-018)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: October 24, 2023
- Last Modified Date: February 06, 2024
43567: HTTP: Voltronic Power ViewPower Pro autoMatchMac Command Injection Vulnerability (ZDI-23-1878)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "43567: ZDI-CAN-22160: Zero Day Initiative Vulnerability (Voltronic Power ViewPower Pro)".
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: December 19, 2023
- Last Modified Date: February 06, 2024
* 43721: HTTP: Atlassian Confluence Data Center and Server Template Injection Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: January 23, 2024
- Last Modified Date: February 06, 2024
* 43760: HTTP: Fortra GoAnywhere MFT Authentication Bypass Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Detection logic updated.
- Release Date: January 30, 2024
- Last Modified Date: February 06, 2024
Modified Filters (metadata changes only):
* = Enabled in Default deployments
* 42210: HTTP: Trend Micro Apex Central Cross-Site Scripting Vulnerability (ZDI-24-074)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "42210: ZDI-CAN-18868: Zero Day Initiative Vulnerability (Trend Micro Apex Central)".
- Description updated.
- Vulnerability references updated.
- Deployments updated and are now:
- Deployment: Default (Block / Notify)
- Release Date: January 31, 2023
- Last Modified Date: February 06, 2024
* 42701: HTTP: Trend Micro Mobile Security for Enterprises Cross-Site Scripting Vulnerability (ZDI-24-078)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "42701: ZDI-CAN-20804: Zero Day Initiative Vulnerability (Trend Micro Mobile Security for Enterprises)".
- Description updated.
- Vulnerability references updated.
- Deployments updated and are now:
- Deployment: Default (Block / Notify)
- Release Date: May 16, 2023
- Last Modified Date: February 06, 2024
* 42702: HTTP: Trend Micro Mobile Security for Enterprises Cross-Site Scripting Vulnerability (ZDI-24-079)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "42702: ZDI-CAN-20805: Zero Day Initiative Vulnerability (Trend Micro Mobile Security for Enterprises)".
- Description updated.
- Vulnerability references updated.
- Deployments updated and are now:
- Deployment: Default (Block / Notify)
- Release Date: May 16, 2023
- Last Modified Date: February 06, 2024
* 42703: HTTP: Trend Micro Mobile Security for Enterprises Cross-Site Scripting Vulnerability (ZDI-24-080)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "42703: ZDI-CAN-20806: Zero Day Initiative Vulnerability (Trend Micro Mobile Security for Enterprises)".
- Description updated.
- Vulnerability references updated.
- Deployments updated and are now:
- Deployment: Default (Block / Notify)
- Release Date: May 16, 2023
- Last Modified Date: February 06, 2024
* 43055: HTTP: Trend Micro Apex Central Unrestricted File Upload Vulnerability (ZDI-24-077)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "43055: ZDI-CAN-20803: Zero Day Initiative Vulnerability (Trend Micro Apex One)".
- Description updated.
- Vulnerability references updated.
- Deployments updated and are now:
- Deployment: Default (Block / Notify)
- Release Date: August 01, 2023
- Last Modified Date: February 06, 2024
* 43697: HTTP: Ivanti Connect Secure and Policy Secure Gateways Command Injection Vulnerability
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Description updated.
- Release Date: January 23, 2024
- Last Modified Date: February 06, 2024
Removed Filters: None
|
Welcome to the future of Business Support! I'm Trend Companion, your
AI assistant ready to streamline your experience.
Log in for your personalized support!
Chat with Trend Companion for quick answers, or submit a case for
detailed troubleshooting.