{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Cisco Prime Infrastructure","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Evolved Programmable Network Manager","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Finesse","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Acano Server versions ant\u00e9rieures \u00e0 1.8.18 et 1.9.6 avec XMPP activ\u00e9","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco cBR-8 Converged Broadband Routers versions 3.17S, 3.17S, 3.18.0S, 3.18.1S, 3.18.0SP","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified Communications Manager (CUCM)","product":{"name":"Unified Communications Manager","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Wide Area Application Services (WAAS)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Meeting Server versions ant\u00e9rieures \u00e0 2.0.6 avec XMPP activ\u00e9","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2016-6442","url":"https://www.cve.org/CVERecord?id=CVE-2016-6442"},{"name":"CVE-2016-6443","url":"https://www.cve.org/CVERecord?id=CVE-2016-6443"},{"name":"CVE-2016-6445","url":"https://www.cve.org/CVERecord?id=CVE-2016-6445"},{"name":"CVE-2016-6437","url":"https://www.cve.org/CVERecord?id=CVE-2016-6437"},{"name":"CVE-2016-6438","url":"https://www.cve.org/CVERecord?id=CVE-2016-6438"},{"name":"CVE-2016-6440","url":"https://www.cve.org/CVERecord?id=CVE-2016-6440"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-prime du 12    octobre 2016","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-prime"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-ucm du 12    octobre 2016","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-ucm"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-msc du 12    octobre 2016","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-msc"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-fin du 12    octobre 2016","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-fin"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-cbr-8 du 12    octobre 2016","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-cbr-8"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-waas du 12    octobre 2016","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161012-waas"}],"reference":"CERTFR-2016-AVI-343","revisions":[{"description":"version initiale.","revision_date":"2016-10-12T00:00:00.000000"}],"risks":[{"description":"Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Injection de code indirecte \u00e0 distance"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits Cisco</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-ucm du 12 octobre 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-waas du 12 octobre 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-cbr-8 du 12 octobre 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-msc du 12 octobre 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-fin du 12 octobre 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20161012-prime du 12 octobre 2016","url":null}]}