{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Splunk Universal Forwarders versions 8.2.x ant\u00e9rieures \u00e0 8.2.11","product":{"name":"N/A","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk Enterprise versions ant\u00e9rieures \u00e0 8.1.14","product":{"name":"Splunk Enterprise","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk App for Lookup File Editing versions ant\u00e9rieures \u00e0 4.0.1","product":{"name":"N/A","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk App for Stream versions ant\u00e9rieures \u00e0 8.1.1","product":{"name":"N/A","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk Enterprise versions 9.0.x ant\u00e9rieures \u00e0 9.0.5","product":{"name":"Splunk Enterprise","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk Cloud versions ant\u00e9rieures \u00e0 9.0.2303.100","product":{"name":"N/A","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk Universal Forwarders versions 9.0.x ant\u00e9rieures \u00e0 9.0.5","product":{"name":"N/A","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk Universal Forwarders versions ant\u00e9rieures \u00e0 8.1.14","product":{"name":"N/A","vendor":{"name":"Splunk","scada":false}}},{"description":"Splunk Enterprise versions 8.2.x ant\u00e9rieures \u00e0 8.2.11","product":{"name":"Splunk Enterprise","vendor":{"name":"Splunk","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2021-22898","url":"https://www.cve.org/CVERecord?id=CVE-2021-22898"},{"name":"CVE-2022-35252","url":"https://www.cve.org/CVERecord?id=CVE-2022-35252"},{"name":"CVE-2022-31129","url":"https://www.cve.org/CVERecord?id=CVE-2022-31129"},{"name":"CVE-2022-32189","url":"https://www.cve.org/CVERecord?id=CVE-2022-32189"},{"name":"CVE-2022-30631","url":"https://www.cve.org/CVERecord?id=CVE-2022-30631"},{"name":"CVE-2023-1370","url":"https://www.cve.org/CVERecord?id=CVE-2023-1370"},{"name":"CVE-2022-27191","url":"https://www.cve.org/CVERecord?id=CVE-2022-27191"},{"name":"CVE-2022-46175","url":"https://www.cve.org/CVERecord?id=CVE-2022-46175"},{"name":"CVE-2020-8169","url":"https://www.cve.org/CVERecord?id=CVE-2020-8169"},{"name":"CVE-2020-7753","url":"https://www.cve.org/CVERecord?id=CVE-2020-7753"},{"name":"CVE-2022-27781","url":"https://www.cve.org/CVERecord?id=CVE-2022-27781"},{"name":"CVE-2021-22925","url":"https://www.cve.org/CVERecord?id=CVE-2021-22925"},{"name":"CVE-2020-8116","url":"https://www.cve.org/CVERecord?id=CVE-2020-8116"},{"name":"CVE-2022-35260","url":"https://www.cve.org/CVERecord?id=CVE-2022-35260"},{"name":"CVE-2022-4304","url":"https://www.cve.org/CVERecord?id=CVE-2022-4304"},{"name":"CVE-2021-33502","url":"https://www.cve.org/CVERecord?id=CVE-2021-33502"},{"name":"CVE-2022-24921","url":"https://www.cve.org/CVERecord?id=CVE-2022-24921"},{"name":"CVE-2022-32208","url":"https://www.cve.org/CVERecord?id=CVE-2022-32208"},{"name":"CVE-2022-28327","url":"https://www.cve.org/CVERecord?id=CVE-2022-28327"},{"name":"CVE-2020-8285","url":"https://www.cve.org/CVERecord?id=CVE-2020-8285"},{"name":"CVE-2021-22901","url":"https://www.cve.org/CVERecord?id=CVE-2021-22901"},{"name":"CVE-2022-27778","url":"https://www.cve.org/CVERecord?id=CVE-2022-27778"},{"name":"CVE-2022-30635","url":"https://www.cve.org/CVERecord?id=CVE-2022-30635"},{"name":"CVE-2021-33503","url":"https://www.cve.org/CVERecord?id=CVE-2021-33503"},{"name":"CVE-2022-41715","url":"https://www.cve.org/CVERecord?id=CVE-2022-41715"},{"name":"CVE-2023-32715","url":"https://www.cve.org/CVERecord?id=CVE-2023-32715"},{"name":"CVE-2022-32207","url":"https://www.cve.org/CVERecord?id=CVE-2022-32207"},{"name":"CVE-2022-37603","url":"https://www.cve.org/CVERecord?id=CVE-2022-37603"},{"name":"CVE-2023-0215","url":"https://www.cve.org/CVERecord?id=CVE-2023-0215"},{"name":"CVE-2023-0286","url":"https://www.cve.org/CVERecord?id=CVE-2023-0286"},{"name":"CVE-2022-27776","url":"https://www.cve.org/CVERecord?id=CVE-2022-27776"},{"name":"CVE-2022-42916","url":"https://www.cve.org/CVERecord?id=CVE-2022-42916"},{"name":"CVE-2020-8286","url":"https://www.cve.org/CVERecord?id=CVE-2020-8286"},{"name":"CVE-2020-7774","url":"https://www.cve.org/CVERecord?id=CVE-2020-7774"},{"name":"CVE-2022-30629","url":"https://www.cve.org/CVERecord?id=CVE-2022-30629"},{"name":"CVE-2022-27782","url":"https://www.cve.org/CVERecord?id=CVE-2022-27782"},{"name":"CVE-2022-32148","url":"https://www.cve.org/CVERecord?id=CVE-2022-32148"},{"name":"CVE-2020-8177","url":"https://www.cve.org/CVERecord?id=CVE-2020-8177"},{"name":"CVE-2021-27292","url":"https://www.cve.org/CVERecord?id=CVE-2021-27292"},{"name":"CVE-2022-30630","url":"https://www.cve.org/CVERecord?id=CVE-2022-30630"},{"name":"CVE-2021-22924","url":"https://www.cve.org/CVERecord?id=CVE-2021-22924"},{"name":"CVE-2022-33987","url":"https://www.cve.org/CVERecord?id=CVE-2022-33987"},{"name":"CVE-2022-43552","url":"https://www.cve.org/CVERecord?id=CVE-2022-43552"},{"name":"CVE-2023-32717","url":"https://www.cve.org/CVERecord?id=CVE-2023-32717"},{"name":"CVE-2021-22947","url":"https://www.cve.org/CVERecord?id=CVE-2021-22947"},{"name":"CVE-2021-22922","url":"https://www.cve.org/CVERecord?id=CVE-2021-22922"},{"name":"CVE-2022-22576","url":"https://www.cve.org/CVERecord?id=CVE-2022-22576"},{"name":"CVE-2022-1705","url":"https://www.cve.org/CVERecord?id=CVE-2022-1705"},{"name":"CVE-2023-32708","url":"https://www.cve.org/CVERecord?id=CVE-2023-32708"},{"name":"CVE-2021-22946","url":"https://www.cve.org/CVERecord?id=CVE-2021-22946"},{"name":"CVE-2020-8284","url":"https://www.cve.org/CVERecord?id=CVE-2020-8284"},{"name":"CVE-2023-23915","url":"https://www.cve.org/CVERecord?id=CVE-2023-23915"},{"name":"CVE-2022-41720","url":"https://www.cve.org/CVERecord?id=CVE-2022-41720"},{"name":"CVE-2022-41716","url":"https://www.cve.org/CVERecord?id=CVE-2022-41716"},{"name":"CVE-2022-24999","url":"https://www.cve.org/CVERecord?id=CVE-2022-24999"},{"name":"CVE-2022-29526","url":"https://www.cve.org/CVERecord?id=CVE-2022-29526"},{"name":"CVE-2022-30633","url":"https://www.cve.org/CVERecord?id=CVE-2022-30633"},{"name":"CVE-2021-33587","url":"https://www.cve.org/CVERecord?id=CVE-2021-33587"},{"name":"CVE-2021-3520","url":"https://www.cve.org/CVERecord?id=CVE-2021-3520"},{"name":"CVE-2022-36227","url":"https://www.cve.org/CVERecord?id=CVE-2022-36227"},{"name":"CVE-2020-13822","url":"https://www.cve.org/CVERecord?id=CVE-2020-13822"},{"name":"CVE-2021-36976","url":"https://www.cve.org/CVERecord?id=CVE-2021-36976"},{"name":"CVE-2023-27535","url":"https://www.cve.org/CVERecord?id=CVE-2023-27535"},{"name":"CVE-2022-27775","url":"https://www.cve.org/CVERecord?id=CVE-2022-27775"},{"name":"CVE-2018-25032","url":"https://www.cve.org/CVERecord?id=CVE-2018-25032"},{"name":"CVE-2023-23914","url":"https://www.cve.org/CVERecord?id=CVE-2023-23914"},{"name":"CVE-2022-30632","url":"https://www.cve.org/CVERecord?id=CVE-2022-30632"},{"name":"CVE-2022-27774","url":"https://www.cve.org/CVERecord?id=CVE-2022-27774"},{"name":"CVE-2022-37601","url":"https://www.cve.org/CVERecord?id=CVE-2022-37601"},{"name":"CVE-2021-20095","url":"https://www.cve.org/CVERecord?id=CVE-2021-20095"},{"name":"CVE-2022-40303","url":"https://www.cve.org/CVERecord?id=CVE-2022-40303"},{"name":"CVE-2019-10744","url":"https://www.cve.org/CVERecord?id=CVE-2019-10744"},{"name":"CVE-2022-1962","url":"https://www.cve.org/CVERecord?id=CVE-2022-1962"},{"name":"CVE-2021-23382","url":"https://www.cve.org/CVERecord?id=CVE-2021-23382"},{"name":"CVE-2023-32716","url":"https://www.cve.org/CVERecord?id=CVE-2023-32716"},{"name":"CVE-2022-42915","url":"https://www.cve.org/CVERecord?id=CVE-2022-42915"},{"name":"CVE-2022-32221","url":"https://www.cve.org/CVERecord?id=CVE-2022-32221"},{"name":"CVE-2022-37434","url":"https://www.cve.org/CVERecord?id=CVE-2022-37434"},{"name":"CVE-2022-28131","url":"https://www.cve.org/CVERecord?id=CVE-2022-28131"},{"name":"CVE-2022-3517","url":"https://www.cve.org/CVERecord?id=CVE-2022-3517"},{"name":"CVE-2021-22897","url":"https://www.cve.org/CVERecord?id=CVE-2021-22897"},{"name":"CVE-2023-32711","url":"https://www.cve.org/CVERecord?id=CVE-2023-32711"},{"name":"CVE-2022-24675","url":"https://www.cve.org/CVERecord?id=CVE-2022-24675"},{"name":"CVE-2022-23806","url":"https://www.cve.org/CVERecord?id=CVE-2022-23806"},{"name":"CVE-2022-2880","url":"https://www.cve.org/CVERecord?id=CVE-2022-2880"},{"name":"CVE-2022-23773","url":"https://www.cve.org/CVERecord?id=CVE-2022-23773"},{"name":"CVE-2021-3803","url":"https://www.cve.org/CVERecord?id=CVE-2021-3803"},{"name":"CVE-2022-2879","url":"https://www.cve.org/CVERecord?id=CVE-2022-2879"},{"name":"CVE-2022-32205","url":"https://www.cve.org/CVERecord?id=CVE-2022-32205"},{"name":"CVE-2023-27534","url":"https://www.cve.org/CVERecord?id=CVE-2023-27534"},{"name":"CVE-2023-27536","url":"https://www.cve.org/CVERecord?id=CVE-2023-27536"},{"name":"CVE-2022-23772","url":"https://www.cve.org/CVERecord?id=CVE-2022-23772"},{"name":"CVE-2022-43551","url":"https://www.cve.org/CVERecord?id=CVE-2022-43551"},{"name":"CVE-2022-42004","url":"https://www.cve.org/CVERecord?id=CVE-2022-42004"},{"name":"CVE-2022-40023","url":"https://www.cve.org/CVERecord?id=CVE-2022-40023"},{"name":"CVE-2023-27533","url":"https://www.cve.org/CVERecord?id=CVE-2023-27533"},{"name":"CVE-2022-43680","url":"https://www.cve.org/CVERecord?id=CVE-2022-43680"},{"name":"CVE-2020-8231","url":"https://www.cve.org/CVERecord?id=CVE-2020-8231"},{"name":"CVE-2022-27779","url":"https://www.cve.org/CVERecord?id=CVE-2022-27779"},{"name":"CVE-2021-31566","url":"https://www.cve.org/CVERecord?id=CVE-2021-31566"},{"name":"CVE-2023-32712","url":"https://www.cve.org/CVERecord?id=CVE-2023-32712"},{"name":"CVE-2022-4200","url":"https://www.cve.org/CVERecord?id=CVE-2022-4200"},{"name":"CVE-2023-27538","url":"https://www.cve.org/CVERecord?id=CVE-2023-27538"},{"name":"CVE-2022-30634","url":"https://www.cve.org/CVERecord?id=CVE-2022-30634"},{"name":"CVE-2021-23343","url":"https://www.cve.org/CVERecord?id=CVE-2021-23343"},{"name":"CVE-2022-35737","url":"https://www.cve.org/CVERecord?id=CVE-2022-35737"},{"name":"CVE-2020-8203","url":"https://www.cve.org/CVERecord?id=CVE-2020-8203"},{"name":"CVE-2023-32710","url":"https://www.cve.org/CVERecord?id=CVE-2023-32710"},{"name":"CVE-2022-32206","url":"https://www.cve.org/CVERecord?id=CVE-2022-32206"},{"name":"CVE-2019-20149","url":"https://www.cve.org/CVERecord?id=CVE-2019-20149"},{"name":"CVE-2022-38900","url":"https://www.cve.org/CVERecord?id=CVE-2022-38900"},{"name":"CVE-2017-16042","url":"https://www.cve.org/CVERecord?id=CVE-2017-16042"},{"name":"CVE-2021-22926","url":"https://www.cve.org/CVERecord?id=CVE-2021-22926"},{"name":"CVE-2022-30580","url":"https://www.cve.org/CVERecord?id=CVE-2022-30580"},{"name":"CVE-2021-22890","url":"https://www.cve.org/CVERecord?id=CVE-2021-22890"},{"name":"CVE-2023-32706","url":"https://www.cve.org/CVERecord?id=CVE-2023-32706"},{"name":"CVE-2019-10746","url":"https://www.cve.org/CVERecord?id=CVE-2019-10746"},{"name":"CVE-2022-40304","url":"https://www.cve.org/CVERecord?id=CVE-2022-40304"},{"name":"CVE-2022-29804","url":"https://www.cve.org/CVERecord?id=CVE-2022-29804"},{"name":"CVE-2020-15138","url":"https://www.cve.org/CVERecord?id=CVE-2020-15138"},{"name":"CVE-2021-22923","url":"https://www.cve.org/CVERecord?id=CVE-2021-22923"},{"name":"CVE-2022-37599","url":"https://www.cve.org/CVERecord?id=CVE-2022-37599"},{"name":"CVE-2021-23368","url":"https://www.cve.org/CVERecord?id=CVE-2021-23368"},{"name":"CVE-2021-29060","url":"https://www.cve.org/CVERecord?id=CVE-2021-29060"},{"name":"CVE-2021-43565","url":"https://www.cve.org/CVERecord?id=CVE-2021-43565"},{"name":"CVE-2023-32709","url":"https://www.cve.org/CVERecord?id=CVE-2023-32709"},{"name":"CVE-2022-37616","url":"https://www.cve.org/CVERecord?id=CVE-2022-37616"},{"name":"CVE-2022-30115","url":"https://www.cve.org/CVERecord?id=CVE-2022-30115"},{"name":"CVE-2021-22876","url":"https://www.cve.org/CVERecord?id=CVE-2021-22876"},{"name":"CVE-2020-7662","url":"https://www.cve.org/CVERecord?id=CVE-2020-7662"},{"name":"CVE-2023-27537","url":"https://www.cve.org/CVERecord?id=CVE-2023-27537"},{"name":"CVE-2022-23491","url":"https://www.cve.org/CVERecord?id=CVE-2022-23491"},{"name":"CVE-2022-27780","url":"https://www.cve.org/CVERecord?id=CVE-2022-27780"},{"name":"CVE-2020-28469","url":"https://www.cve.org/CVERecord?id=CVE-2020-28469"},{"name":"CVE-2021-22945","url":"https://www.cve.org/CVERecord?id=CVE-2021-22945"},{"name":"CVE-2023-32707","url":"https://www.cve.org/CVERecord?id=CVE-2023-32707"},{"name":"CVE-2022-27664","url":"https://www.cve.org/CVERecord?id=CVE-2022-27664"},{"name":"CVE-2023-32713","url":"https://www.cve.org/CVERecord?id=CVE-2023-32713"},{"name":"CVE-2022-25858","url":"https://www.cve.org/CVERecord?id=CVE-2022-25858"},{"name":"CVE-2023-32714","url":"https://www.cve.org/CVERecord?id=CVE-2023-32714"},{"name":"CVE-2019-8331","url":"https://www.cve.org/CVERecord?id=CVE-2019-8331"},{"name":"CVE-2023-23916","url":"https://www.cve.org/CVERecord?id=CVE-2023-23916"}],"links":[],"reference":"CERTFR-2023-AVI-0428","revisions":[{"description":"Version initiale","revision_date":"2023-06-02T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de code indirecte \u00e0 distance (XSS)"},{"description":"Ex\u00e9cution de code arbitraire"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits <span\nclass=\"textit\">Splunk</span>. Certaines d'entre elles permettent \u00e0 un\nattaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par\nl'\u00e9diteur, une ex\u00e9cution de code arbitraire et un d\u00e9ni de service \u00e0\ndistance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Splunk","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0603 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0603"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0609 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0609"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0607 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0607"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0602 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0602"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0613 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0613"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0608 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0608"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0610 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0610"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0611 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0611"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0614 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0614"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0601 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0601"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0605 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0605"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0606 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0606"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0615 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0615"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0604 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0604"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Splunk SVD-2023-0612 du 01 juin 2023","url":"https://advisory.splunk.com/advisories/SVD-2023-0612"}]}