Citrix ADC

Signature update for May 2022

New signatures rules are generated for the vulnerabilities identified in the week 2022-05-13. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 85 applicable for NetScaler VPX 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0, Citrix ADC 13.1 platforms.

Note

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
998982 CVE-2022-26352 WEB-MISC dotCMS - Arbitrary File Upload Vulnerability Via PUT (CVE-2022-26352)
998983 CVE-2022-26352 WEB-MISC dotCMS - Arbitrary File Upload Vulnerability Via POST (CVE-2022-26352)
998984 CVE-2022-1388 WEB-MISC F5 BIG-IP - iControl REST Authentication Bypass Vulnerability (CVE-2022-1388)
998985 CVE-2022-1162 WEB-MISC Gitlab CE/EE Multiple Versions - Hard-coded Credentials Vulnerability (CVE-2022-1162)
998986 CVE-2022-0888 WEB-WORDPRESS Plugin Ninja Forms File Uploads Prior to 3.3.1 - Arbitrary File Upload Vulnerability (CVE-2022-0888)
998987 CVE-2021-35244 WEB-MISC SolarWinds Orion Prior to 2020.2.6 HF3 - Arbitrary File Upload Vulnerability Via WriteToFile Action (CVE-2021-35244)
Signature update for May 2022