Hub Appsec rule

More info

vpatch-CVE-2025-13315 AppSec Rule

« vpatch-CVE-2025-13315 »
v0.1 by crowdsecurity
AppSec rule

Detects unauthenticated access to Twonky Server log file exposure endpoint.

Installation

cscli appsec-rules install crowdsecurity/vpatch-CVE-2025-13315

YAML Configuration

1## autogenerated on 2025-12-17 15:04:34
2name: crowdsecurity/vpatch-CVE-2025-13315
3description: 'Detects unauthenticated access to Twonky Server log file exposure endpoint.'
4rules:
5  - zones:
6      - URI
7    transform:
8      - lowercase
9    match:
10      type: equals
11      value: /nmc/rpc/log_getfile
12
13labels:
14  type: exploit
15  service: http
16  confidence: 3
17  spoofable: 0
18  behavior: 'http:exploit'
19  label: 'Twonky Server - Exposure'
20  classification:
21    - cve.CVE-2025-13315
22    - attack.T1190
23    - cwe.CWE-306
24

Hub Appsec rule

« vpatch-CVE-2025-13315 »v0.1 by crowdsecurityAppSec rule

« vpatch-CVE-2025-13315 »
v0.1 by crowdsecurity
AppSec rule