Citrix ADC

Signature update for April 2022

New signatures rules are generated for the vulnerabilities identified in the week 2022-04-23. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 82 applicable for NetScaler VPX 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0, Citrix ADC 13.1 platforms.

Note

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
998997 CVE-2022-27924 WEB-MISC Zimbra Collaboration Joule - Cache Poisoning Vulnerability (CVE-2022-27924)
998998 CVE-2022-21907 WEB-MISC Microsoft HTTP Protocol Stack - Remote Code Execution Vulnerability (CVE-2022-21907)
998999 CVE-2021-37930 WEB-MISC ManageEngine ADManager Plus Prior to 7111 - Arbitrary File Upload Vulnerability Via sm_domainName (CVE-2021-37930)
999000 CVE-2021-37930 WEB-MISC ManageEngine ADManager Plus Prior to 7111 - Arbitrary File Upload Vulnerability Via sm_operationId (CVE-2021-37930)
Signature update for April 2022