Citrix ADC

Signature update for June 2022

New signatures rules are generated for the vulnerabilities identified in the week 2022-06-07. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 87 applicable for NetScaler VPX 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0, Citrix ADC 13.1 platforms.

Note

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
998964 CVE-2022-30525 WEB-MISC Zyxel Firewalls Multiple Versions - Unauthenticated OS Command Injection Vulnerability in setWanPortSt (CVE-2022-30525)
998965 CVE-2022-29108 WEB-MISC Microsoft SharePoint - RCE Via Deserialization of Untrusted Data Vulnerability (CVE-2022-29108)
998966 CVE-2022-26134 WEB-MISC Atlassian Confluence Multiple Versions - Unauthenticated OGNL Injection Vulnerability (CVE-2022-26134)
998967 CVE-2022-26019 WEB-MISC pfSense CE < 2.6.0 - Remote Code Execution Vulnerability Via services_ntpd_gps.php and gpsport (CVE-2022-26019)
998968 CVE-2022-26019 WEB-MISC pfSense CE < 2.6.0 - Remote Code Execution Vulnerability Via services_ntpd.php and gpsport (CVE-2022-26019)
998969 CVE-2022-24288 WEB-MISC Apache Airflow Up To 2.2.3 - DAG Example Remote Code Execution Vulnerability via my_param (CVE-2022-24288)
998970 CVE-2022-24288 WEB-MISC Apache Airflow Up To 2.2.3 - DAG Example Remote Code Execution Vulnerability via foo or miff (CVE-2022-24288)
998971 CVE-2022-22978 WEB-MISC Spring Security Up to 5.5.6 and 5.6.3 - RegexRequestMatcher Bypass Vulnerability Via Line Feed (CVE-2022-22978)
998972 CVE-2022-22978 WEB-MISC Spring Security Up to 5.5.6 and 5.6.3 - RegexRequestMatcher Bypass Vulnerability Via Carriage Return (CVE-2022-22978)
998973 CVE-2022-22957 WEB-MISC VMware Multiple Products - Remote Code Execution Vulnerability (CVE-2022-22957)
998974 CVE-2021-45232 WEB-MISC Apache APISIX Dashboard Prior to 2.10.1 - Authentication Bypass Vulnerability Via export (CVE-2021-45232)
998975 CVE-2021-45232 WEB-MISC Apache APISIX Dashboard Prior to 2.10.1 - Authentication Bypass Vulnerability via import (CVE-2021-45232)
998976 CVE-2021-41739 WEB-MISC Artica Proxy - OS Command Injection Vulnerability Via cyrus.events.php (CVE-2021-41739)
998977 CVE-2021-37927 WEB-MISC ManageEngine ADManager Plus Prior to 7111 - Authentication Bypass Vulnerability (CVE-2021-37927)
998978 CVE-2021-36356 WEB-MISC Kramer VIA VSM Server - Unauthenticated Remote Code Execution Vulnerability in writeBrowseFilePathAjax (CVE-2021-36356)
998979 CVE-2021-25094 WEB-WORDPRESS Plugin Tatsu Builder Prior to 3.3.12 - Remote Code Execution Vulnerability (CVE-2021-25094)
Signature update for June 2022