| 2025-10-28T13:25:23.575Z | ET WEB_SERVER Possible IIS Integer Overflow DoS (CVE-2015-1635) | Web Application Attack | network, intrusion_detection |
| 2025-10-28T13:25:21.279Z | ET WEB_SERVER ColdFusion administrator access | Web Application Attack | network, intrusion_detection |
| 2025-10-28T13:25:21.237Z | ET EXPLOIT Cisco RV320/RV325 Config Disclosure Attempt Inbound (CVE-2019-1653) | Attempted Administrator Privilege Gain | network, intrusion_detection |
| 2025-10-28T13:24:57.942Z | ET EXPLOIT Jenkins Plugin Script RCE Exploit Attempt (CVE-2019-1003001) | Attempted Administrator Privilege Gain | network, intrusion_detection |
| 2025-10-28T13:24:53.471Z | ET EXPLOIT VMWare Server-side Template Injection RCE (CVE-2022-22954) | Attempted Administrator Privilege Gain | network, intrusion_detection |
| 2025-10-28T13:24:53.471Z | ET EXPLOIT Possible VMware Workspace ONE Access RCE via Server-Side Template Injection Inbound (CVE-2022-22954) | Attempted Administrator Privilege Gain | network, intrusion_detection |
| 2025-10-28T13:24:34.305Z | ET EXPLOIT Possible Citrix Application Delivery Controller Arbitrary Code Execution Attempt (CVE-2019-19781) | Attempted Administrator Privilege Gain | network, intrusion_detection |
| 2025-10-28T13:24:34.305Z | ET EXPLOIT Possible Citrix Application Delivery Controller Arbitrary Code Execution Attempt (CVE-2019-19781) M4 | Attempted Administrator Privilege Gain | network, intrusion_detection |
| 2025-10-28T13:24:34.305Z | ET EXPLOIT Citrix Application Delivery Controller Arbitrary Code Execution Attempt Scanner Attempt (CVE-2019-19781) | Attempted Administrator Privilege Gain | network, intrusion_detection |
| 2025-10-28T13:24:29.534Z | ET WEB_SPECIFIC_APPS Kibana Attempted LFI Exploitation (CVE-2018-17246) | Attempted User Privilege Gain | network, intrusion_detection |