Signature update version 38

New signatures rules are generated for the vulnerabilities identified in version 38. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signatures are compatible with the following software versions of Citrix Application Delivery Controller (ADC) 11.1, 12.0, 12.1, 13.0 and 13.1.

Citrix ADC version 12.0 has reached end of life (EOL). For more information, see release life cycle page.

Note:

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
999800 CVE-2019-12517 WEB-WORDPRESS SlickQuiz Plugin Version 1.3.7.1 and Prior - XSS Vulnerability (CVE-2019-12517)
999801 CVE-2019-10392 WEB-MISC Jenkins Git Client Plugin 2.8.4 And Prior - OS Command Injection Vulnerability (CVE-2019-10392)
999802 CVE-2019-8371 WEB-MISC OpenEMR Prior to 5.0.2 - Remote Code Execution Vulnerability Via Form_Filedata Field (CVE-2019-8371)
999803 CVE-2019-8371 WEB-MISC OpenEMR Prior to 5.0.2 - Remote Code Execution Vulnerability Via Form_Image Field (CVE-2019-8371)
999804 CVE-2019-12516 WEB-WORDPRESS SlickQuiz Plugin Version 1.3.7.1 and Prior - SQL Injection Vulnerability (CVE-2019-12516)
999805 CVE-2019-1262 WEB-MISC Microsoft Sharepoint Server - Cross Site Scripting Vulnerability (CVE-2019-1262)
Signature update version 38