updated FN matchers

http/cves/2024/CVE-2024-5421.yaml

@@ -1,7 +1,7 @@
 id: CVE-2024-5421
 
 info:
-  name: SEH utnserver Pro/ProMAX / INU-100 20.1.22 - Authenticated File Disclosure  
+  name: SEH utnserver Pro/ProMAX / INU-100 20.1.22 - File Exposure
   author: bl4ckp4r4d1s3
   severity: high
   description: |
@@ -9,6 +9,7 @@ info:
   reference:
     - https://cyberdanube.com/en/en-multiple-vulnerabilities-in-seh-untserver-pro/index.html
     - https://seclists.org/fulldisclosure/2024/Jun/4
+    - https://nvd.nist.gov/vuln/detail/CVE-2024-5421
   classification:
     cvss-metrics: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:L
     cvss-score: 8.7
@@ -20,24 +21,23 @@ info:
     shodan-query: SEH HTTP Server
     vendor: SEH Computertechnik
     product: utnserver Pro/ProMAX / INU-100
-    version: 0 - 20.1.22
-  tags: cve,cve2024,utnserver,os command
+  tags: cve,cve2024,utnserver,seh,exposure
 
 http:
   - method: GET
     path: 
       - "{{BaseURL}}/info/dir?/"
 
+    matchers-condition: and
     matchers:
       - type: word
-        name: Authenticated File Disclosure
-        words:
-          - "application"
-          - "dev"
-          - "etc"
         part: body
+        words:
+          - "/var/tmp</td>"
+          - "File System Info"
+          - 'face="courier'
+        condition: and
 
       - type: status
         status:
           - 200
-