Signature update for February 2020

New signatures rules are generated for the vulnerabilities identified in the week 2020-02-11. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 42 applicable for NetScaler VPX 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0 platforms.

Note

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
999707   WEB-WORDPRESS WPCentral Plugin Prior to Version 1.4.8 - Privilege Escalation Vulnerability
999708 CVE-2019-15979 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Command Injection Vulnerability (CVE-2019-15979)
999709 CVE-2019-15978 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Command Injection Vulnerability (CVE-2019-15978)
999710 CVE-2019-15975 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Authentication Bypass Vulnerability (CVE-2019-15975)
999711 CVE-2019-15976 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Authentication Bypass Vulnerability (CVE-2019-15976)
999712 CVE-2019-16405 WEB-MISC Centreon Prior to Version 19.10.2 - Remote Code Execution Vulnerability (CVE-2019-16405)
999713 CVE-2020-7048 WEB-WORDPRESS WP Database Reset Plugin Up To 3.1 - Unauthenticated DataBase Table Reset Vulnerability (CVE-2020-7048)
999714 CVE-2020-7108 WEB-WORDPRESS LearnDash Plugin Prior to Version 3.1.2 - Reflected XSS Vulnerability (CVE-2020-7108)
999715 CVE-2019-15977 WEB-MISC Cisco Data Center Network Manager Prior To 11.3(1) - Authentication Bypass Vulnerability (CVE-2019-15977)
999716 CVE-2020-2096 WEB-MISC Jenkins Gitlab Hook Plugin Version 1.4.2 and Prior - XSS Vulnerability (CVE-2020-2096)