ADC

Signature update version 103

New signatures rules are generated for the vulnerabilities identified in the week 2023-03-01. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 103 applicable for NetScaler 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0, Citrix ADC 13.1 platforms.

Note

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
998761 CVE-2022-45094 WEB-MISC Siemens SINEC INS Prior to V1.0 SP2 Update 1 - Remote Code Execution Vulnerability via bootFileLoc (CVE-2022-45094)
998762 CVE-2022-40044, CVE-2022-40043 WEB-MISC Centreon Prior to 22.04.1 - XSS Vulnerability Via esc_name and esc_alias(CVE-2022-40044)
998763 CVE-2022-3361 WEB-MISC WordPress Plugin Ultimate Member before 2.5.1 - Command Injection Vulnerability (CVE-2022-3361)
998764 CVE-2022-32573 WEB-MISC Lansweeper Prior to 10.3.1.0 - Path Traversal Vulnerability Via txtdocname (CVE-2022-32573)
998765 CVE-2022-29517 WEB-MISC Lansweeper Prior to 10.3.1.0 - Path Traversal Vulnerability Via inlineattachmentname (CVE-2022-29517)
998766 CVE-2022-29511 WEB-MISC Lansweeper Prior to 10.3.1.0 - Information Disclosure Vulnerability (CVE-2022-29511)
998767 CVE-2022-29081 WEB-MISC Zoho ManageEngine Multiple Products - REST API Access Control Bypass Vulnerability (CVE-2022-29081)
998768 CVE-2022-25487 WEB-MISC AtomCMS Prior to 2.1 - Unrestricted File Upload Vulnerability (CVE-2022-25487)
998769 CVE-2021-26086 WEB-MISC Atlassian Jira Server and Data Center - Information Disclosure Vulnerability Via WEB-INF (CVE-2021-26086)
998770 CVE-2021-26086 WEB-MISC Atlassian Jira Server and Data Center - Information Disclosure Vulnerability Via META-INF (CVE-2021-26086)
998771 CVE-2021-26085, CVE-2021-26086 WEB-MISC Atlassian Confluence Server - Information Disclosure Vulnerability Via WEB-INF (CVE-2021-26085, CVE-2021-26086)
998772 CVE-2021-26085, CVE-2021-26086 WEB-MISC Atlassian Confluence Server - Information Disclosure Vulnerability Via META-INF (CVE-2021-26085, CVE-2021-26086)
998773 CVE-2020-13818 WEB-MISC Zoho ManageEngine OpManager Prior to 125144 - Directory Traversal Vulnerability (CVE-2020-13818)
Signature update version 103