Hillstone Networks

'; } else{ echo ''; } echo 'Hillstone Networks'; } elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") { echo ''; echo 'huaantech'; } elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") { echo ''; echo 'dcnetworks'; } elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") { if (false===strpos($_SERVER[REQUEST_URI],"/en/")) echo ''; else echo ''; echo 'w-ibeda'; } elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") { echo ''; echo 'hp-telecom'; } elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") { echo ''; echo 'Maipu'; } elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") { echo ''; echo 'Ncurity'; } elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") { echo ''; echo 'Socusnetwork'; } else{ echo ''; echo 'Hillstone Networks'; } ?>

RULE（RULE ID：339424）

Rule General Information


Release Date:		2025-09-02

Rule Name:		WPS Remote Code Execution Vulnerability

Severity:

CVE ID:

Rule Protection Details


Description:		WPS Document Center is a cloud-based document storage and management platform for individuals and enterprises. WPS Document Platform provides enterprises with an integrated solution for document collaboration and workflow management, emphasizing API integration and business system consolidation.In versions deployed via Docker for private environments prior to May 2024, attackers could exploit a vulnerability to obtain AK/SK keys. With these keys, they could modify Kubernetes configuration files, add kubelet route mappings, and ultimately issue command execution requests to internal Pod interfaces.

Impact:		An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software.

Affected OS:		Windows, Linux, Others

Reference:

Solutions

Please contact the software vendor to update the software patch.