{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Quantum Security Management versions R81.10, R81, R80.40, R80.30SP, R80.30 3.10, R80.30, R80.20SP, R80.20, R80.10, R80.20.X sans le dernier correctif de s\u00e9curit\u00e9 (hotfix)","product":{"name":"N/A","vendor":{"name":"Check Point","scada":false}}},{"description":"Quantum Security Gateways versions R81.10, R81, R80.40, R80.30SP, R80.30 3.10, R80.30, R80.20SP, R80.20, R80.10, R80.20.X sans le dernier correctif de s\u00e9curit\u00e9 (hotfix)","product":{"name":"N/A","vendor":{"name":"Check Point","scada":false}}},{"description":"Multi-Domain Management versions R81.10, R81, R80.40, R80.30SP, R80.30 3.10, R80.30, R80.20SP, R80.20, R80.10, R80.20.X sans le dernier correctif de s\u00e9curit\u00e9 (hotfix)","product":{"name":"N/A","vendor":{"name":"Check Point","scada":false}}},{"description":"Gaia Embedded for Quantum Spark Appliances sans le dernier correctif de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"Check Point","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2021-26691","url":"https://www.cve.org/CVERecord?id=CVE-2021-26691"},{"name":"CVE-2021-34798","url":"https://www.cve.org/CVERecord?id=CVE-2021-34798"},{"name":"CVE-2021-26690","url":"https://www.cve.org/CVERecord?id=CVE-2021-26690"},{"name":"CVE-2021-33193","url":"https://www.cve.org/CVERecord?id=CVE-2021-33193"},{"name":"CVE-2021-40438","url":"https://www.cve.org/CVERecord?id=CVE-2021-40438"}],"links":[],"reference":"CERTFR-2021-AVI-875","revisions":[{"description":"Version initiale","revision_date":"2021-11-15T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Check\nPoint. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer un\nd\u00e9ni de service \u00e0 distance, un contournement de la politique de s\u00e9curit\u00e9\net une atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Check Point","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Check Point sk176113 du 14 novembre 2021","url":"https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk176113&src=securityAlerts"}]}