{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"R6900","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R7900","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R8000","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R6700","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"D6400","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"D6220","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R6250","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R7300DST","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R7000","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R7100LG","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"R6400","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}}],"affected_systems_content":null,"closed_at":"2016-12-26","content":"## Description\n\nLe 9 d\u00e9cembre 2016, Netgear a \u00e9mis un avis de s\u00e9curit\u00e9 indiquant que\nplusieurs de ses routeurs \u00e9taient vuln\u00e9rables \u00e0 une injection de\ncommande \u00e0 distance.  \nUn attaquant non authentifi\u00e9 peut exploiter cette vuln\u00e9rabilit\u00e9 \u00e0\ndistance si l'utilisateur se rend sur un site pi\u00e9g\u00e9.  \nCela lui permet alors d'ex\u00e9cuter des commandes arbitraires avec les\nprivil\u00e8ges les plus \u00e9lev\u00e9s (root).  \nA noter qu'un attaquant pr\u00e9sent sur le r\u00e9seau local peut directement\nexploiter cette vuln\u00e9rabilit\u00e9.\n\nDepuis le 24 d\u00e9cembre 2016, un correctif de s\u00e9curit\u00e9 est disponible pour\nle micrologiciel de chaque mod\u00e8le vuln\u00e9rable.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation)\n","cves":[{"name":"CVE-2016-582384","url":"https://www.cve.org/CVERecord?id=CVE-2016-582384"},{"name":"CVE-2016-6277","url":"https://www.cve.org/CVERecord?id=CVE-2016-6277"}],"links":[{"title":"CERT Carnegie Mellon","url":"https://www.kb.cert.org/vuls/id/582384"},{"title":"Avis CERT-FR CERTFR-2016-AVI-430 Routeurs Netgear","url":"http://www.cert.ssi.gouv.fr/site/CERTFR-2016-AVI-430/index.html"}],"reference":"CERTFR-2016-ALE-010","revisions":[{"description":"version initiale.","revision_date":"2016-12-13T00:00:00.000000"},{"description":"mise \u00e0 jour de la liste des syst\u00e8mes affect\u00e9s et cl\u00f4ture de l'alerte.","revision_date":"2016-12-26T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans <span class=\"textit\">les\nrouteurs Netgear</span>. Elle permet \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance.  \n","title":"Vuln\u00e9rabilit\u00e9 dans les routeurs Netgear","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Netgear du 09 d\u00e9cembre 2016","url":"http://kb.netgear.com/000036386/CVE-2016-582384"}]}