Citrix ADC

2022 年 6 月签名更新

将为在 2022-06-07 周发现的漏洞生成新的签名规则。您可以下载并配置这些签名规则,以保护您的设备免受安全漏洞攻击。

签名版本

签名版本 87 适用于 NetScaler VPX 11.1、NetScaler 12.0、Citrix ADC 12.1、Citrix ADC 13.0、Citrix ADC 13.1 平台。

注意

启用帖子正文和响应正文签名规则可能会影响 Citrix ADC CPU。

常见漏洞条目 (CVE) 见解

以下是签名规则、CVE ID 及其描述的列表。

签名规则 CVE ID 说明
998964 CVE-2022-30525 WEB-MISC Zyxel Firewalls Multiple Versions - Unauthenticated OS Command Injection Vulnerability in setWanPortSt (CVE-2022-30525)
998965 CVE-2022-29108 WEB-MISC Microsoft SharePoint - RCE Via Deserialization of Untrusted Data Vulnerability (CVE-2022-29108)
998966 CVE-2022-26134 WEB-MISC Atlassian Confluence Multiple Versions - Unauthenticated OGNL Injection Vulnerability (CVE-2022-26134)
998967 CVE-2022-26019 WEB-MISC pfSense CE < 2.6.0 - Remote Code Execution Vulnerability Via services_ntpd_gps.php and gpsport (CVE-2022-26019)
998968 CVE-2022-26019 WEB-MISC pfSense CE < 2.6.0 - Remote Code Execution Vulnerability Via services_ntpd.php and gpsport (CVE-2022-26019)
998969 CVE-2022-24288 WEB-MISC Apache Airflow Up To 2.2.3 - DAG Example Remote Code Execution Vulnerability via my_param (CVE-2022-24288)
998970 CVE-2022-24288 WEB-MISC Apache Airflow Up To 2.2.3 - DAG Example Remote Code Execution Vulnerability via foo or miff (CVE-2022-24288)
998971 CVE-2022-22978 WEB-MISC Spring Security Up to 5.5.6 and 5.6.3 - RegexRequestMatcher Bypass Vulnerability Via Line Feed (CVE-2022-22978)
998972 CVE-2022-22978 WEB-MISC Spring Security Up to 5.5.6 and 5.6.3 - RegexRequestMatcher Bypass Vulnerability Via Carriage Return (CVE-2022-22978)
998973 CVE-2022-22957 WEB-MISC VMware Multiple Products - Remote Code Execution Vulnerability (CVE-2022-22957)
998974 CVE-2021-45232 WEB-MISC Apache APISIX Dashboard Prior to 2.10.1 - Authentication Bypass Vulnerability Via export (CVE-2021-45232)
998975 CVE-2021-45232 WEB-MISC Apache APISIX Dashboard Prior to 2.10.1 - Authentication Bypass Vulnerability via import (CVE-2021-45232)
998976 CVE-2021-41739 WEB-MISC Artica Proxy - OS Command Injection Vulnerability Via cyrus.events.php (CVE-2021-41739)
998977 CVE-2021-37927 WEB-MISC ManageEngine ADManager Plus Prior to 7111 - Authentication Bypass Vulnerability (CVE-2021-37927)
998978 CVE-2021-36356 WEB-MISC Kramer VIA VSM Server - Unauthenticated Remote Code Execution Vulnerability in writeBrowseFilePathAjax (CVE-2021-36356)
998979 CVE-2021-25094 WEB-WORDPRESS Plugin Tatsu Builder Prior to 3.3.12 - Remote Code Execution Vulnerability (CVE-2021-25094)
2022 年 6 月签名更新