ADC

Signature update version 35

New signatures rules are generated for the vulnerabilities identified in version 35. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 35 is compatible with the following software versions of Citrix Application Delivery Controller (ADC) 11.1, 12.0, 12.1, 13.0 and 13.1.

Citrix ADC version 12.0 has reached end of life (EOL). For more information, see release life cycle page.

Note

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
999834 CVE-2019-13024 WEB-MISC Centreon Version 19.04 and Prior - Command Injection Vulnerability
999835 CVE-2019-5420 WEB-MISC Rails Development Mode - Secret Token Disclosure Vulnerability
999836 CVE-2019-5418 WEB-MISC Rails Action View - File Content Disclosure Vulnerability
999837 CVE-2018-12426, CVE-2019-11185 WEB-WORDPRESS WP Live Chat Support Pro plug-in Prior to 8.0.26 - Arbitrary File Upload
999838 CVE-2019-10270 WEB-WORDPRESS WordPress plug-in Ultimate Member Prior to Version 2.0.40 - Arbitrary Password Reset
999839 CVE-2019-12826 WEB-WORDPRESS WordPress plug-in Widget Logic Prior To 5.10.2 - CSRF Vulnerability
999840 WEB-WORDPRESS WordPress plug-in All-In-One Event Calendar Prior To 2.5.39 - cross-site scripting Vulnerability
999841 CVE-2019-11565 WEB-WORDPRESS WordPress plug-in Print My Blog Prior To 1.6.7 - Unauthenticated SSRF Vulnerability
999842 WEB-WORDPRESS WordPress plug-in Ultimate Member Prior to Version 2.0.46 - Multiple cross-site scripting</LogString
Signature update version 35