ADC

Signature update version 42

New signatures rules are generated for the vulnerabilities identified in the week 2020-02-11. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 42 is compatible with the following software versions of Citrix Application Delivery Controller (ADC) 11.1, 12.0, 12.1, 13.0 and 13.1.

Citrix ADC version 12.0 has reached end of life (EOL). For more information, see release life cycle page.

Note:

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
999707   WEB-WORDPRESS WPCentral plug-in Prior to Version 1.4.8 - Privilege Escalation Vulnerability
999708 CVE-2019-15979 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Command Injection Vulnerability (CVE-2019-15979)
999709 CVE-2019-15978 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Command Injection Vulnerability (CVE-2019-15978)
999710 CVE-2019-15975 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Authentication Bypass Vulnerability (CVE-2019-15975)
999711 CVE-2019-15976 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Authentication Bypass Vulnerability (CVE-2019-15976)
999712 CVE-2019-16405 WEB-MISC Centreon Prior to Version 19.10.2 - Remote Code Execution Vulnerability (CVE-2019-16405)
999713 CVE-2020-7048 WEB-WORDPRESS WP Database Reset plug-in Up To 3.1 - Unauthenticated DataBase Table Reset Vulnerability (CVE-2020-7048)
999714 CVE-2020-7108 WEB-WORDPRESS LearnDash plug-in Prior to Version 3.1.2 - Reflected cross-site scripting Vulnerability (CVE-2020-7108)
999715 CVE-2019-15977 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Authentication Bypass Vulnerability (CVE-2019-15977)
999716 CVE-2020-2096 WEB-MISC Jenkins Gitlab Hook plug-in Version 1.4.2 and Prior - cross-site scripting Vulnerability (CVE-2020-2096)
Signature update version 42