ADC

签名更新版本 41

针对2020-02-04这一周发现的漏洞生成了新的签名规则。您可以下载并配置这些签名规则,以保护您的设备免受安全漏洞攻击。签名更新包括特征码 ID、签名版本和寻址的 CVE 列表。

签名版本

签名版本 41 与以下软件版本的 Citrix 应用程序Delivery Controller (ADC) 11.1、12.0、12.1、13.0 和 13.1 兼容。

Citrix ADC 12.0 版本已达到生命周期终止 (EOL)。有关详细信息,请参阅 版本生命周期 页面。

注意:

签名更新版本 41 包括对错误签名规则 1861 的修复。 启用帖子正文和响应正文签名规则可能会影响 Citrix ADC CPU。

常见漏洞条目 (CVE) 见解

以下是签名规则、CVE ID 及其描述的列表。

签名规则 CVE ID 说明
999717   WEB-WORDPRESS WordPress Version 5.3.x and Prior - Denial of Service Vulnerability Via xmlrpc.php pingback.ping Method
999718   WEB-WORDPRESS Backup And Staging By WP Time Capsule plug-in Prior To 1.21.16 - Authentication Bypass Vulnerability
999719 CVE-2019-19731 WEB-MISC Roxy Fileman For .NET 1.4.5 - Path Traversal Vulnerability Via RENAMEFILE (CVE-2019-19731)
999720 CVE-2019-19915 WEB-WORDPRESS 301 Redirects – Easy Redirect Manager plug-in Up To 2.4.0 - Multiple Vulnerabilities (CVE-2019-19915)
999721 CVE-2019-17662 WEB-MISC Cybele Software ThinVNC Prior to Version 1.0b1 - Directory Traversal Vulnerability (CVE-2019-17662)
999722 CVE-2020-6168 WEB-WORDPRESS Minimal Coming Soon And Maintenance Mode plug-in Prior To 2.17 - Maintenance Setting Vulnerability (CVE-2020-6168)
999723 CVE-2020-6166 WEB-WORDPRESS Minimal Coming Soon And Maintenance Mode plug-in Prior To 2.17 - Theme Change Vulnerability (CVE-2020-6166)
999724 CVE-2020-6166 WEB-WORDPRESS Minimal Coming Soon And Maintenance Mode plug-in Prior To 2.17 - Export Settings Vulnerability (CVE-2020-6166)
999725   WEB-WORDPRESS InifiniteWP Client plug-in Prior to 1.9.4.5 - Authentication Bypass Vulnerability
999726 CVE-2019-16773 WEB-WORDPRESS WordPress Versions Prior to 5.3.1 - cross-site scripting Vulnerability Via REST API With JSON Object (CVE-2019-16773)
999727 CVE-2019-16773 WEB-WORDPRESS WordPress Versions Prior to 5.3.1 - cross-site scripting Vulnerability Via REST API With FORM FIELD (CVE-2019-16773)
999728 CVE-2019-16773 WEB-WORDPRESS WordPress Versions Prior to 5.3.1 - cross-site scripting Vulnerability Via user-edit.php (CVE-2019-16773)
999729 CVE-2019-16773 WEB-WORDPRESS WordPress Versions Prior to 5.3.1 - cross-site scripting Vulnerability Via profile.php (CVE-2019-16773)
999730 CVE-2019-16113 WEB-MISC Bludit 3.9.2 - Image Upload Remote Code Execution Vulnerability Via uuid (CVE-2019-16113)
999731 CVE-2019-16113 WEB-MISC Bludit 3.9.2 - Image Upload Remote Code Execution Vulnerability Via filename (CVE-2019-16113)
签名更新版本 41