Citrix ADC

2022 年 7 月的签名更新

针对在 2022-07-30 周发现的漏洞生成新的签名规则。您可以下载并配置这些签名规则,以保护您的设备免受安全漏洞攻击。

签名版本

签名版本 90 适用于 NetScaler VPX 11.1、NetScaler 12.0、Citrix ADC 12.1、Citrix ADC 13.0、Citrix ADC 13.1 平台。

注意

启用帖子正文和响应正文签名规则可能会影响 Citrix ADC CPU。

常见漏洞条目 (CVE) 见解

以下是签名规则、CVE ID 及其描述的列表。

签名规则 CVE ID 说明
998929 CVE-2022-34871 WEB-MISC Centreon Prior to 21.10.6 - SQL Injection Vulnerability (CVE-2022-34871)
998930 CVE-2022-29846 WEB-MISC In Progress Ipswitch WhatsUp Gold - Information Disclosure Vulnerability (CVE-2022-29846)
998931 CVE-2022-29845 WEB-MISC In Progress Ipswitch WhatsUp Gold - Path Traversal Vulnerability (CVE-2022-29845)
998932 CVE-2022-28055 WEB-MISC FusionPBX Prior to 5.0.1 - Remote Code Execution Vulnerability (CVE-2022-28055)
998933 CVE-2022-26138 WEB-MISC Atlassian Questions For Confluence App - Hardcoded Credentials Vulnerability Via REST API (CVE-2022-26138)
998934 CVE-2022-26138 WEB-MISC Atlassian Questions For Confluence App - Hardcoded Credentials Vulnerability Via Login Form (CVE-2022-26138)
998935 CVE-2022-26135 WEB-MISC Jira Server and Data Center - Mobile Plugin Server-Side Request Forgery Vulnerability (CVE-2022-26135)
998936 CVE-2022-21445 WEB-MISC Oracle OBIEE ADF Faces - Deserialization of Untrusted Data Vulnerability (CVE-2022-21445)
998937 CVE-2022-2143 WEB-MISC Advantech iView Prior to 5.7.04.6469 - RCE Vulnerability Via NetworkServlet URI and fwfilename (CVE-2022-2143)
998938 CVE-2022-2143 WEB-MISC Advantech iView Prior to 5.7.04.6469 - RCE Vulnerability Via CommandServlet URI and fwfilename (CVE-2022-2143)
998939 CVE-2022-2143 WEB-MISC Advantech iView Prior to 5.7.04.6469 - RCE Vulnerability Via NetworkServlet URI and backup_filename (CVE-2022-2143)
998940 CVE-2022-2143 WEB-MISC Advantech iView Prior to 5.7.04.6469 - RCE Vulnerability Via CommandServlet URI and backup_filename (CVE-2022-2143)
998941 CVE-2022-2099 WEB-WORDPRESS WooCommerce Plugin Prior to 6.6.0 - Payment Gateway HTML Injection Vulnerability (CVE-2022-2099)
2022 年 7 月的签名更新