{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"IBM Db2 Warehouse on Cloud Pak for Data versions ant\u00e9rieures \u00e0 v4.6","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Sterling Control Center versions ant\u00e9rieures \u00e0 6.2.1.0 iFix09","product":{"name":"Sterling Control Center","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Db2 on Cloud Pak for Data versions ant\u00e9rieures \u00e0 v4.6","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Watson Discovery versions ant\u00e9rieures \u00e0 4.6.0","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2021-21303","url":"https://www.cve.org/CVERecord?id=CVE-2021-21303"},{"name":"CVE-2016-1000023","url":"https://www.cve.org/CVERecord?id=CVE-2016-1000023"},{"name":"CVE-2022-3515","url":"https://www.cve.org/CVERecord?id=CVE-2022-3515"},{"name":"CVE-2022-36055","url":"https://www.cve.org/CVERecord?id=CVE-2022-36055"},{"name":"CVE-2021-32690","url":"https://www.cve.org/CVERecord?id=CVE-2021-32690"},{"name":"CVE-2022-29526","url":"https://www.cve.org/CVERecord?id=CVE-2022-29526"},{"name":"CVE-2022-30633","url":"https://www.cve.org/CVERecord?id=CVE-2022-30633"},{"name":"CVE-2022-28131","url":"https://www.cve.org/CVERecord?id=CVE-2022-28131"},{"name":"CVE-2022-42889","url":"https://www.cve.org/CVERecord?id=CVE-2022-42889"},{"name":"CVE-2022-41296","url":"https://www.cve.org/CVERecord?id=CVE-2022-41296"},{"name":"CVE-2022-34903","url":"https://www.cve.org/CVERecord?id=CVE-2022-34903"},{"name":"CVE-2022-3172","url":"https://www.cve.org/CVERecord?id=CVE-2022-3172"},{"name":"CVE-2022-41297","url":"https://www.cve.org/CVERecord?id=CVE-2022-41297"},{"name":"CVE-2022-27664","url":"https://www.cve.org/CVERecord?id=CVE-2022-27664"}],"links":[],"reference":"CERTFR-2022-AVI-1069","revisions":[{"description":"Version initiale","revision_date":"2022-12-01T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM.\nCertaines d'entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 6840941 du 30 novembre 2022","url":"https://www.ibm.com/support/pages/node/6840941"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 6842547 du 30 novembre 2022","url":"https://www.ibm.com/support/pages/node/6842547"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 6840925 du 30 novembre 2022","url":"https://www.ibm.com/support/pages/node/6840925"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 6843071 du 30 novembre 2022","url":"https://www.ibm.com/support/pages/node/6843071"}]}