ADC

Signature update version 132

New signatures rules are generated for the vulnerabilities identified in the week 2024-06-27. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 132 applicable for NetScaler 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0, NetScaler 13.1, NetScaler 14.1 platforms.

Note

Enabling Post body and Response body signature rules might affect NetScaler CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
998475 CVE-2024-4295 WEB-WORDPRESS Icegram Express Email Subscribers Prior to 5.7.21 - SQL Injection Vulnerability (CVE-2024-4295)
998476 CVE-2024-37393 WEB-MISC SecurEnvoy MFA Prior to 9.4.514 - Unauthenticated LDAP Injection Vulnerability Via USERID or MEMBEROF (CVE-2024-37393)
998477 CVE-2024-36680 WEB-MISC Prestashop Promokit Facebook Module Up to 1.0.1 - SQL Injection Vulnerability (CVE-2024-36680)
998478 CVE-2024-28995 WEB-MISC SolarWinds Serv-U Prior to 15.4.2 HF 2 - Directory Traversal Vulnerability (CVE-2024-28995)
998479 CVE-2024-27349 WEB-MISC Apache HugeGraph-Server Prior to 1.3.0 - Authentication Bypass Vulnerability (CVE-2024-27349)
998480 CVE-2024-27348 WEB-MISC Apache HugeGraph-Server Prior to 1.3.0 - Remote code Execution Vulnerability (CVE-2024-27348)
Signature update version 132