ADC

Signature update version 143

September 27, 2025

Contributed by:

New signatures rules are generated for the vulnerabilities identified in the week 2025-01-07. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 143 applicable for NetScaler 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0, NetScaler 13.1, NetScaler 14.1 platforms.

Note

Enabling Post body and Response body signature rules might affect NetScaler® CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule	CVE ID	Description
998366	CVE-2024-8529	WEB-WORDPRESS WordPress Plugin LMS Plugin Prior To 4.2.7.1 - SQL Injection Vulnerability (CVE-2024-8529)
998367	CVE-2024-8522	WEB-WORDPRESS WordPress Plugin LMS Plugin Prior To 4.2.7.1 - SQL Injection Vulnerability via rest_route (CVE-2024-8522)
998368	CVE-2024-8522	WEB-WORDPRESS WordPress Plugin LMS Plugin Prior To 4.2.7.1 - SQL Injection Vulnerability (CVE-2024-8522)
998369	CVE-2024-53961	WEB-MISC Adobe ColdFusion Multiple Versions - Path Traversal Vulnerability (CVE-2024-53961)
998370	CVE-2024-51568	WEB-MISC CyberPanel Prior to 2.3.5 - Unauthenticated OS Command Injection Vulnerability (CVE-2024-51568)
998371	CVE-2024-51567	WEB-MISC CyberPanel Prior to 2.3.8 - Unauthenticated OS Command Injection Vulnerability (CVE-2024-51567)
998372	CVE-2024-51378	WEB-MISC CyberPanel Prior to 2.3.8 - Unauthenticated OS Command Injection Vulnerability (CVE-2024-51378)
998373	CVE-2024-46938	WEB-MISC SiteCore Up To 10.4 - Arbitrary File Read Vulnerability via sitecore_speak (CVE-2024-46938)
998374	CVE-2024-46938	WEB-MISC SiteCore Up To 10.4 - Arbitrary File Read Vulnerability via speak (CVE-2024-46938)
998375	CVE-2024-43436	WEB-MISC Moodle Multiple Versions - SQL Injection Vulnerability (CVE-2024-43436)
998376	CVE-2024-42327	WEB-MISC Zabbix - API SQL Injection Vulnerability (CVE-2024-42327)
998377	CVE-2024-37397	WEB-MISC Ivanti Endpoint Manager Multiple Versions - XXE Injection Vulnerability (CVE-2024-37397)

The official version of this product documentation is in English. Any non-English version is solely provided for your convenience and may include machine-translated content. For more information, please refer to the Machine Translation Disclaimer on Cloud Software Group home.

Was this helpful

NetScaler Secure Deployment Guide

Signature update version 143

September 27, 2025

Contributed by:

September 27, 2025

Contributed by:

Signature update version 143

Signature version

Common Vulnerability Entry (CVE) insight

In this article