ADC

签名更新版本 87

将为在 2022-06-07 周发现的漏洞生成新的签名规则。您可以下载并配置这些签名规则,以保护您的设备免受安全漏洞攻击。

签名版本

签名版本 87 适用于 NetScaler 11.1、NetScaler 12.0、NetScaler 12.1、NetScaler 13.0、NetScaler 13.1 平台。

注意

启用帖子正文和响应正文签名规则可能会影响 NetScaler CPU。

常见漏洞条目 (CVE) 见解

以下是签名规则、CVE ID 及其描述的列表。

签名规则 CVE ID 说明
998964 CVE-2022-30525 WEB-MISC Zyxel Firewalls Multiple Versions - Unauthenticated OS Command Injection Vulnerability in setWanPortSt (CVE-2022-30525)
998965 CVE-2022-29108 WEB-MISC Microsoft SharePoint - RCE Via Deserialization of Untrusted Data Vulnerability (CVE-2022-29108)
998966 CVE-2022-26134 WEB-MISC Atlassian Confluence Multiple Versions - Unauthenticated OGNL Injection Vulnerability (CVE-2022-26134)
998967 CVE-2022-26019 WEB-MISC pfSense CE < 2.6.0 - Remote Code Execution Vulnerability Via services_ntpd_gps.php and gpsport (CVE-2022-26019)
998968 CVE-2022-26019 WEB-MISC pfSense CE < 2.6.0 - Remote Code Execution Vulnerability Via services_ntpd.php and gpsport (CVE-2022-26019)
998969 CVE-2022-24288 WEB-MISC Apache Airflow Up To 2.2.3 - DAG Example Remote Code Execution Vulnerability via my_param (CVE-2022-24288)
998970 CVE-2022-24288 WEB-MISC Apache Airflow Up To 2.2.3 - DAG Example Remote Code Execution Vulnerability via foo or miff (CVE-2022-24288)
998971 CVE-2022-22978 WEB-MISC Spring Security Up to 5.5.6 and 5.6.3 - RegexRequestMatcher Bypass Vulnerability Via Line Feed (CVE-2022-22978)
998972 CVE-2022-22978 WEB-MISC Spring Security Up to 5.5.6 and 5.6.3 - RegexRequestMatcher Bypass Vulnerability Via Carriage Return (CVE-2022-22978)
998973 CVE-2022-22957 WEB-MISC VMware Multiple Products - Remote Code Execution Vulnerability (CVE-2022-22957)
998974 CVE-2021-45232 WEB-MISC Apache APISIX Dashboard Prior to 2.10.1 - Authentication Bypass Vulnerability Via export (CVE-2021-45232)
998975 CVE-2021-45232 WEB-MISC Apache APISIX Dashboard Prior to 2.10.1 - Authentication Bypass Vulnerability via import (CVE-2021-45232)
998976 CVE-2021-41739 WEB-MISC Artica Proxy - OS Command Injection Vulnerability Via cyrus.events.php (CVE-2021-41739)
998977 CVE-2021-37927 WEB-MISC ManageEngine ADManager Plus Prior to 7111 - Authentication Bypass Vulnerability (CVE-2021-37927)
998978 CVE-2021-36356 WEB-MISC Kramer VIA VSM Server - Unauthenticated Remote Code Execution Vulnerability in writeBrowseFilePathAjax (CVE-2021-36356)
998979 CVE-2021-25094 WEB-WORDPRESS Plugin Tatsu Builder Prior to 3.3.12 - Remote Code Execution Vulnerability (CVE-2021-25094)
签名更新版本 87