年代ignature update version 54
New signatures rules are generated for the vulnerabilities identified in the week 2020-12-02. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.
年代ignature version
年代ignature version 54 is compatible with the following software versions of Citrix Application Delivery Controller (ADC) 11.1, 12.0, 12.1, 13.0 and 13.1.
Citrix ADC version 12.0 has reached end of life (EOL). For more information, seerelease life cyclepage.
Note:
Enabling Post body and Response body signature rules might affect Citrix ADC CPU. As part of signature update version 54, log string for signature 999720 is changed to ensure that it includes only ASCI characters.
Common Vulnerability Entry (CVE) insight
Following is a list of signature rules, CVE IDs, and its description.
年代ignature rule | CVE ID | Description |
---|---|---|
999394 | CVE-2020-8255 | WEB-MISC Pulse Connect Secure Prior To 9.1R9 - Information Disclosure Vulnerability (CVE-2020-8255) |
999395 | CVE-2020-6128 | 7.5 - SQLi Vulnera之前WEB-MISC同台可以了OpenSISbility Via CoursePeriodModal.php (CVE-2020-6128) |
999396 | CVE-2020-6126, CVE-2020-6127 | 7.5 - SQLi Vulnera之前WEB-MISC同台可以了OpenSISbility Via CoursePeriodModal.php (CVE-2020-6126, CVE-2020-6127) |
999397 | cve - 2020 - 28328 | WEB-MISC SuiteCRM Prior to 7.11.16 - Remote Code Execution Vulnerability (CVE-2020-28328) |
999398 | CVE-2020-27995 | WEB-MISC Zoho ManageEngine Applications Manager 14 Prior to Build 14560 - SQL Injection Vulnerability (CVE-2020-27995) |
999399 | CVE-2020-26879 | WEB-MISC骚动vRIoT服务器之前1.6.0——身份验证orization Bypass Vulnerability Via /service/ (CVE-2020-26879) |
999400 | CVE-2020-26879 | WEB-MISC骚动vRIoT服务器之前1.6.0——身份验证orization Bypass Vulnerability Via /reboot (CVE-2020-26879) |
999401 | CVE-2020-26879 | WEB-MISC骚动vRIoT服务器之前1.6.0——身份验证orization Bypass Vulnerability Via /patch/ (CVE-2020-26879) |
999402 | CVE-2020-26879 | WEB-MISC骚动vRIoT服务器之前1.6.0——身份验证orization Bypass Vulnerability Via /upgrade/ (CVE-2020-26879) |
999403 | CVE-2020-26879 | WEB-MISC骚动vRIoT服务器之前1.6.0——身份验证orization Bypass Vulnerability Via /module/ (CVE-2020-26879) |
999404 | CVE-2020-26878 | WEB-MISC Ruckus vRIoT Server Prior to 1.6.0 - Arbitrary OS Command Injection Vulnerability (CVE-2020-26878) |
999405 | CVE-2020-25790 | WEB-MISC Typesetter CMS 5.x Through 5.1 - Unsecure File Upload Vulnerability (CVE-2020-25790) |
999406 | CVE-2020-25540 | WEB-MISC ThinkAdmin v6 - Directory Traversal Vulnerability (CVE-2020-25540) |
999407 | CVE-2020-14883 | WEB-MISC Oracle WebLogic Server - Authenticated Remote Code Execution Vulnerability (CVE-2020-14883) |
999408 | CVE-2020-14882, CVE-2020-14750 | WEB-MISC Oracle WebLogic Server - Authentication Bypass Vulnerability (CVE-2020-14882, CVE-2020-14750) |
999409 | CVE-2020-11975, CVE-2020-13942 | WEB-MISC Apache Unomi Prior to 1.5.2 - Remote Code Execution Vulnerability (CVE-2020-11975, CVE-2020-13942) |
999410 | CVE-2020-11803 | WEB-MISC Titan SpamTitan Prior To 7.08 - Remote Code Execution Vulnerability (CVE-2020-11803) |