Citrix Application Delivery Management service

Release Notes for Citrix ADM service May 10, 2022 Release

This release notes document describes the enhancements and changes, fixed and known issues that exist for the Citrix ADM service release Build May 10, 2022.

Notes

This release notes document does not include security-related fixes. For a list of security-related fixes and advisories, see the Citrix security bulletin.

What’s New

The enhancements and changes that are available in Build May 10, 2022.

Analytics

Export realtime data to Splunk

The integration of Citrix ADM with Splunk now enables you to export realtime data to Splunk. In the ADM GUI, when you select the Realtime Export option and configure, the selected violations in Citrix ADM are pushed to Splunk immediately.

For more information, see Integration with Splunk.

[NSADM-84529]

Improvements to WAF learning engine

In Citrix ADM, you can now configure a learning profile and deploy or skip the relaxation rules for the following additional security checks:

  • JSON SQL

  • JSON Command Injection

  • JSON XSS

    Note

    To configure a learning profile using these security checks, the Citrix ADC instance must be 13.1–14.10 or later.

For more information, see WAF learning engine.

[NSADM-80921]

Applications

Improvements to the unified dashboard

The unified dashboard in Overview > Dashboard now enables you to customize it based on your choice. Using the Edit dashboard option, you can:

  • Drag widgets

  • Remove widgets

  • Add widgets

  • Reset to default

After making changes, click Save.

Note

By default, all widgets are displayed. If you have customized the dashboard, saved the changes, and use the Reset to default option, the last saved customized dashboard is restored.

[NSADM-52144]

Infrastructure

Improvements to ADM GUI

You can now expand or collapse the ADM GUI navigation menu individually. This improvement enables you to view all options in each section.

[NSADM-85480]

Support for identification and remediation of CVE-2022-27507 and CVE-2022-22508

Citrix ADM security advisory now supports the identification and remediation of two new CVEs: CVE-2022-27507 and CVE-2022-22508.

  • Identification of CVE-2022-27507 requires a combination of a version scan and config scan, and remediation requires an upgrade of the vulnerable ADC instances to a release and build that has the fix.

    ADM Security Advisory does not support mitigation. If you have applied mitigation (temporary workaround) to the ADC instance, ADM will still identify the ADC as vulnerable until you have completed remediation.

    For CVE-2022-27507, even if you have applied mitigation and temporarily disabled HDX Insight for EDT traffic, (see Security Bulletin), ADM Security Advisory will still identify the ADC as vulnerable until you have completed remediation (upgrade to a release and the build that has the fix).

  • Identification of CVE-2022-27508 requires a combination of a version scan and config scan, and remediation requires an upgrade of the vulnerable ADC instances to a release and build that has the fix.

    For more information about how to remediate CVE-2022-27507 and CVE-2022-22508, see Security Advisory.

    Note

    It might take a couple of hours for the security advisory system scan to conclude and reflect the impact of CVE-2022-27507 and CVE-2022-27508 in the security advisory module. To see the impact sooner, you may start an on-demand scan by clicking Scan Now.

[NSADM-85673]

Fixed Issue

The issues that are addressed in Build May 10, 2022.

  • In Infrastructure > Instances > Citrix ADC, when you change an admin profile password and include % in the password, an error message is displayed.

    [NSHELP-31392]

Release Notes for Citrix ADM service May 10, 2022 Release