{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Schneider Electric EcoStruxure Power SCADA Operation with Advanced Reports toutes versions sans le correctif de s\u00e9curit\u00e9 Hotfix-145271 Hotfix-145271","product":{"name":"N/A","vendor":{"name":"Schneider Electric","scada":true}}},{"description":"Schneider Electric EcoStruxure Power Operation (EPO) with Advanced Reports toutes versions sans le correctif de s\u00e9curit\u00e9 Hotfix-145271 Hotfix-145271","product":{"name":"N/A","vendor":{"name":"Schneider Electric","scada":true}}},{"description":"Schneider Electric EcoStruxure Power Monitoring Expert (PME) toutes versions sans le correctif de s\u00e9curit\u00e9 Hotfix-145271 Hotfix-145271","product":{"name":"N/A","vendor":{"name":"Schneider Electric","scada":true}}},{"description":"Schneider Electric SpaceLogic C-Bus Toolkit versions ant\u00e9rieures \u00e0 1.16.4","product":{"name":"N/A","vendor":{"name":"Schneider Electric","scada":true}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2023-5399","url":"https://www.cve.org/CVERecord?id=CVE-2023-5399"},{"name":"CVE-2023-5391","url":"https://www.cve.org/CVERecord?id=CVE-2023-5391"},{"name":"CVE-2023-5402","url":"https://www.cve.org/CVERecord?id=CVE-2023-5402"}],"links":[],"reference":"CERTFR-2023-AVI-0818","revisions":[{"description":"Version initiale","revision_date":"2023-10-11T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">les produits Schneider</span>. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Schneider","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Schneider SEVD-2023-283-02 du 10 octobre 2023","url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-283-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-283-02.pdf"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Schneider SEVD-2023-283-01 du 10 octobre 2023","url":"https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-283-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-283-01.pdf"}]}