ADC

Signature update version 156

September 27, 2025

Contributed by:

New signatures rules are generated for the vulnerabilities identified in the week 2025-07-16. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 156 applicable for Citrix ADC 12.1, Citrix ADC 13.0, NetScaler 13.1, NetScaler 14.1 platforms.

Note

Enabling Post body and Response body signature rules might affect NetScaler® CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule	CVE ID	Description
998259	CVE-2025-48703	WEB-MISC CentOS Web Panel Prior to 0.9.8.1205 - Unauthenticated RCE Vulnerability (CVE-2025-48703)
998260	CVE-2024-9381	WEB-MISC Ivanti Cloud Services Application Prior to 5.0.2 - Path Traversal Vulnerability via /rc (CVE-2024-9381)
998261	CVE-2024-9381	WEB-MISC Ivanti Cloud Services Application Prior to 5.0.2 - Path Traversal Vulnerability via /gsbx (CVE-2024-9381)
998262	CVE-2024-9381	WEB-MISC Ivanti Cloud Services Application Prior to 5.0.2 - Path Traversal Vulnerability via /backups (CVE-2024-9381)
998263	CVE-2024-9381	WEB-MISC Ivanti Cloud Services Application Prior to 5.0.2 - Path Traversal Vulnerability via /gsb (CVE-2024-9381)
998264	CVE-2024-8963	WEB-MISC Ivanti Cloud Services Application Prior to 4.6 Patch 519 - Path Traversal Vulnerability via dot (CVE-2024-8963)
998265	CVE-2024-8963	WEB-MISC Ivanti Cloud Services Application Prior to 4.6 Patch 519 - Path Traversal Vulnerability via ? (CVE-2024-8963)
998266	CVE-2024-7314	WEB-MISC AJ-Report - Authentication Bypass Vulnerability via swagger-resources (CVE-2024-7314)
998267	CVE-2024-7314	WEB-MISC AJ-Report - Authentication Bypass Vulnerability via swagger-ui (CVE-2024-7314)
998268	CVE-2025-6463	WEB-WORDPRESS Forminator Plugin Prior to 1.44.3 - Unauthenticated Arbitrary File Deletion to RCE Vulnerability (CVE-2025-6463)
998269	CVE-2025-34511	WEB-MISC SiteCore Up To 10.4 - Unrestricted File Upload Vulnerability (CVE-2025-34511)
998270	CVE-2024-36408	WEB-MISC Prior To 7.14.4 and 8.6.1 - SQLi Vulnerability Via Alerts Module action_add endpoint (CVE-2024-36408)

The official version of this product documentation is in English. Any non-English version is solely provided for your convenience and may include machine-translated content. For more information, please refer to the Machine Translation Disclaimer on Cloud Software Group home.

Was this helpful

NetScaler Secure Deployment Guide

Signature update version 156

September 27, 2025

Contributed by:

September 27, 2025

Contributed by:

Signature update version 156

Signature version

Common Vulnerability Entry (CVE) insight

In this article