Hi,
Not sure whether this is going to be a good group to post or not...
I just installed Synology Router (I used Asus router in the past), and Synology router has Threat Prevention app that alerts me for any potential vulnerable connections/clients installed inside my LAN network.
I received the following alert from Hubitat; and I'm not sure whether this warning is a valid thing or not, thought of reaching out to the lovely Hubitat developer to let you know about this.
Hardware Version: C-5
Platform Version: 2.4.3.158
Warning from Synology:
- Classification: Potentially Bad Traffic
- Severity: Medium
- Destination IP: 23.214.110.226
- Signature Name: ET POLICY Vulnerable Java Version 11.0.x Detected
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET POLICY Vulnerable Java Version 11.0.x Detected"; flow:established,to_server; flowbits:set,ET.http.javaclient.vulnerable; http.user_agent; content:"Java/11.0."; content:!"25"; within:2; threshold: type limit, count 2, seconds 300, track by_src; reference:url,Java Development Kit 11 Release Notes; classtype:bad-unknown; sid:2028867; rev:13; metadata:affected_product Java, attack_target Client_Endpoint, created_at 2019_10_18, deployment Perimeter, confidence High, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_10_29;)
If there is anything that I could assist, please let me know
Thank you!
