ADC

Signature update version 97

New signatures rules are generated for the vulnerabilities identified in the week 2022-11-15. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 97 applicable for NetScaler 11.1, NetScaler 12.0, NetScaler 12.1, NetScaler 13.0, NetScaler 13.1 platforms.

Note

Enabling Post body and Response body signature rules might affect NetScaler CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
998841 CVE-2022-40043 WEB-MISC Centreon Prior to 22.04.1 - SQL Injection Vulnerability Via esc_name (CVE-2022-40043)
998842 CVE-2022-35153 WEB-MISC FusionPBX 5.0.1 and Prior - OS Command Injection Vulnerability (CVE-2022-35153)
998843 CVE-2022-3387 WEB-MISC Advantech R-SeeNet Prior to 2.4.21 - Path Traversal Vulnerability (CVE-2022-3387)
998844 CVE-2022-3385 WEB-MISC Advantech R-SeeNet Prior to 2.4.21 - Buffer Overflow Vulnerability Via filename (CVE-2022-3385)
998845 CVE-2022-31680 WEB-MISC VMWare vCenter Server Prior to 6.5 U3u - Unsafe Deserialization Vulnerability Via PSC (CVE-2022-31680)
998846 CVE-2022-28732 WEB-MISC Apache JSPWiki Prior to 2.11.3 - WeblogPlugin XSS vulnerability Via weblog.startDate (CVE-2022-28732)
998847 CVE-2022-28732 WEB-MISC Apache JSPWiki Prior to 2.11.3 - WeblogPlugin XSS vulnerability Via startDate (CVE-2022-28732)
998848 CVE-2022-28730 WEB-MISC Apache JSPWiki Prior to 2.11.3 - AJAXPreview XSS vulnerability Via Denounce Plugin (CVE-2022-28730)
998849 CVE-2022-23463 WEB-MISC Nepxion Discovery - SpEL Injection Vulnerability (CVE-2022-23463)
Signature update version 97