{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"IBM Sterling Order Management versions 10.0.x ant\u00e9rieures \u00e0 10.0.2309.0","product":{"name":"Sterling","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Db2 on Cloud Pak for Data versions 3.5, 4.0, 4.5, 4.6, 4.7 ant\u00e9rieures \u00e0 4.7 Refresh 3","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Db2 versions 10.5.0.x sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"Db2","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Db2 versions 11.1.4.x sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"Db2","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Db2 REST versions 1.0.0.121-amd64 \u00e0 1.0.0.276-amd64 ant\u00e9rieures \u00e0 1.0.0.291-amd64","product":{"name":"Db2","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Db2 Warehouse on Cloud Pak for Data versions 3.5, 4.0, 4.5, 4.6, 4.7 ant\u00e9rieures \u00e0 4.7 Refresh 3","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Db2 versions 11.5.x sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"Db2","vendor":{"name":"IBM","scada":false}}},{"description":"IBM QRadar Network Packet Capture versions 7.5.x ant\u00e9rieures \u00e0 7.5.0 UP6","product":{"name":"QRadar","vendor":{"name":"IBM","scada":false}}},{"description":"IBM QRadar SIEM versions 7.5.x ant\u00e9rieures \u00e0 7.5.0 UP7","product":{"name":"QRadar SIEM","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2023-21938","url":"https://www.cve.org/CVERecord?id=CVE-2023-21938"},{"name":"CVE-2019-17267","url":"https://www.cve.org/CVERecord?id=CVE-2019-17267"},{"name":"CVE-2023-21843","url":"https://www.cve.org/CVERecord?id=CVE-2023-21843"},{"name":"CVE-2022-21426","url":"https://www.cve.org/CVERecord?id=CVE-2022-21426"},{"name":"CVE-2023-33201","url":"https://www.cve.org/CVERecord?id=CVE-2023-33201"},{"name":"CVE-2023-32697","url":"https://www.cve.org/CVERecord?id=CVE-2023-32697"},{"name":"CVE-2023-30991","url":"https://www.cve.org/CVERecord?id=CVE-2023-30991"},{"name":"CVE-2023-29404","url":"https://www.cve.org/CVERecord?id=CVE-2023-29404"},{"name":"CVE-2020-9546","url":"https://www.cve.org/CVERecord?id=CVE-2020-9546"},{"name":"CVE-2023-21954","url":"https://www.cve.org/CVERecord?id=CVE-2023-21954"},{"name":"CVE-2023-21939","url":"https://www.cve.org/CVERecord?id=CVE-2023-21939"},{"name":"CVE-2020-13956","url":"https://www.cve.org/CVERecord?id=CVE-2020-13956"},{"name":"CVE-2023-29256","url":"https://www.cve.org/CVERecord?id=CVE-2023-29256"},{"name":"CVE-2020-10673","url":"https://www.cve.org/CVERecord?id=CVE-2020-10673"},{"name":"CVE-2020-35728","url":"https://www.cve.org/CVERecord?id=CVE-2020-35728"},{"name":"CVE-2020-36181","url":"https://www.cve.org/CVERecord?id=CVE-2020-36181"},{"name":"CVE-2020-9548","url":"https://www.cve.org/CVERecord?id=CVE-2020-9548"},{"name":"CVE-2023-21830","url":"https://www.cve.org/CVERecord?id=CVE-2023-21830"},{"name":"CVE-2020-36182","url":"https://www.cve.org/CVERecord?id=CVE-2020-36182"},{"name":"CVE-2020-24616","url":"https://www.cve.org/CVERecord?id=CVE-2020-24616"},{"name":"CVE-2023-30431","url":"https://www.cve.org/CVERecord?id=CVE-2023-30431"},{"name":"CVE-2022-42703","url":"https://www.cve.org/CVERecord?id=CVE-2022-42703"},{"name":"CVE-2020-36185","url":"https://www.cve.org/CVERecord?id=CVE-2020-36185"},{"name":"CVE-2023-0286","url":"https://www.cve.org/CVERecord?id=CVE-2023-0286"},{"name":"CVE-2023-32067","url":"https://www.cve.org/CVERecord?id=CVE-2023-32067"},{"name":"CVE-2022-25147","url":"https://www.cve.org/CVERecord?id=CVE-2022-25147"},{"name":"CVE-2019-16942","url":"https://www.cve.org/CVERecord?id=CVE-2019-16942"},{"name":"CVE-2020-9547","url":"https://www.cve.org/CVERecord?id=CVE-2020-9547"},{"name":"CVE-2020-36179","url":"https://www.cve.org/CVERecord?id=CVE-2020-36179"},{"name":"CVE-2023-29403","url":"https://www.cve.org/CVERecord?id=CVE-2023-29403"},{"name":"CVE-2023-35012","url":"https://www.cve.org/CVERecord?id=CVE-2023-35012"},{"name":"CVE-2023-30443","url":"https://www.cve.org/CVERecord?id=CVE-2023-30443"},{"name":"CVE-2020-36186","url":"https://www.cve.org/CVERecord?id=CVE-2020-36186"},{"name":"CVE-2020-36189","url":"https://www.cve.org/CVERecord?id=CVE-2020-36189"},{"name":"CVE-2020-35490","url":"https://www.cve.org/CVERecord?id=CVE-2020-35490"},{"name":"CVE-2023-29405","url":"https://www.cve.org/CVERecord?id=CVE-2023-29405"},{"name":"CVE-2023-34454","url":"https://www.cve.org/CVERecord?id=CVE-2023-34454"},{"name":"CVE-2023-27869","url":"https://www.cve.org/CVERecord?id=CVE-2023-27869"},{"name":"CVE-2021-20190","url":"https://www.cve.org/CVERecord?id=CVE-2021-20190"},{"name":"CVE-2023-26049","url":"https://www.cve.org/CVERecord?id=CVE-2023-26049"},{"name":"CVE-2023-32342","url":"https://www.cve.org/CVERecord?id=CVE-2023-32342"},{"name":"CVE-2023-2828","url":"https://www.cve.org/CVERecord?id=CVE-2023-2828"},{"name":"CVE-2023-30446","url":"https://www.cve.org/CVERecord?id=CVE-2023-30446"},{"name":"CVE-2019-16335","url":"https://www.cve.org/CVERecord?id=CVE-2019-16335"},{"name":"CVE-2023-34453","url":"https://www.cve.org/CVERecord?id=CVE-2023-34453"},{"name":"CVE-2023-29007","url":"https://www.cve.org/CVERecord?id=CVE-2023-29007"},{"name":"CVE-2019-14893","url":"https://www.cve.org/CVERecord?id=CVE-2019-14893"},{"name":"CVE-2022-3564","url":"https://www.cve.org/CVERecord?id=CVE-2022-3564"},{"name":"CVE-2020-11113","url":"https://www.cve.org/CVERecord?id=CVE-2020-11113"},{"name":"CVE-2023-27868","url":"https://www.cve.org/CVERecord?id=CVE-2023-27868"},{"name":"CVE-2023-35116","url":"https://www.cve.org/CVERecord?id=CVE-2023-35116"},{"name":"CVE-2023-20867","url":"https://www.cve.org/CVERecord?id=CVE-2023-20867"},{"name":"CVE-2023-28709","url":"https://www.cve.org/CVERecord?id=CVE-2023-28709"},{"name":"CVE-2020-10672","url":"https://www.cve.org/CVERecord?id=CVE-2020-10672"},{"name":"CVE-2023-0767","url":"https://www.cve.org/CVERecord?id=CVE-2023-0767"},{"name":"CVE-2020-10969","url":"https://www.cve.org/CVERecord?id=CVE-2020-10969"},{"name":"CVE-2023-30445","url":"https://www.cve.org/CVERecord?id=CVE-2023-30445"},{"name":"CVE-2022-40609","url":"https://www.cve.org/CVERecord?id=CVE-2022-40609"},{"name":"CVE-2020-36187","url":"https://www.cve.org/CVERecord?id=CVE-2020-36187"},{"name":"CVE-2023-30447","url":"https://www.cve.org/CVERecord?id=CVE-2023-30447"},{"name":"CVE-2023-30442","url":"https://www.cve.org/CVERecord?id=CVE-2023-30442"},{"name":"CVE-2023-34455","url":"https://www.cve.org/CVERecord?id=CVE-2023-34455"},{"name":"CVE-2023-30441","url":"https://www.cve.org/CVERecord?id=CVE-2023-30441"},{"name":"CVE-2020-11620","url":"https://www.cve.org/CVERecord?id=CVE-2020-11620"},{"name":"CVE-2023-27867","url":"https://www.cve.org/CVERecord?id=CVE-2023-27867"},{"name":"CVE-2023-34396","url":"https://www.cve.org/CVERecord?id=CVE-2023-34396"},{"name":"CVE-2020-24750","url":"https://www.cve.org/CVERecord?id=CVE-2020-24750"},{"name":"CVE-2022-37434","url":"https://www.cve.org/CVERecord?id=CVE-2022-37434"},{"name":"CVE-2023-39976","url":"https://www.cve.org/CVERecord?id=CVE-2023-39976"},{"name":"CVE-2019-16943","url":"https://www.cve.org/CVERecord?id=CVE-2019-16943"},{"name":"CVE-2022-4378","url":"https://www.cve.org/CVERecord?id=CVE-2022-4378"},{"name":"CVE-2020-28491","url":"https://www.cve.org/CVERecord?id=CVE-2020-28491"},{"name":"CVE-2019-20330","url":"https://www.cve.org/CVERecord?id=CVE-2019-20330"},{"name":"CVE-2020-14195","url":"https://www.cve.org/CVERecord?id=CVE-2020-14195"},{"name":"CVE-2023-21937","url":"https://www.cve.org/CVERecord?id=CVE-2023-21937"},{"name":"CVE-2023-22809","url":"https://www.cve.org/CVERecord?id=CVE-2023-22809"},{"name":"CVE-2020-35491","url":"https://www.cve.org/CVERecord?id=CVE-2020-35491"},{"name":"CVE-2019-17531","url":"https://www.cve.org/CVERecord?id=CVE-2019-17531"},{"name":"CVE-2023-33850","url":"https://www.cve.org/CVERecord?id=CVE-2023-33850"},{"name":"CVE-2023-30448","url":"https://www.cve.org/CVERecord?id=CVE-2023-30448"},{"name":"CVE-2020-14061","url":"https://www.cve.org/CVERecord?id=CVE-2020-14061"},{"name":"CVE-2023-2597","url":"https://www.cve.org/CVERecord?id=CVE-2023-2597"},{"name":"CVE-2020-11619","url":"https://www.cve.org/CVERecord?id=CVE-2020-11619"},{"name":"CVE-2022-48339","url":"https://www.cve.org/CVERecord?id=CVE-2022-48339"},{"name":"CVE-2023-27558","url":"https://www.cve.org/CVERecord?id=CVE-2023-27558"},{"name":"CVE-2020-36183","url":"https://www.cve.org/CVERecord?id=CVE-2020-36183"},{"name":"CVE-2020-8840","url":"https://www.cve.org/CVERecord?id=CVE-2020-8840"},{"name":"CVE-2023-38408","url":"https://www.cve.org/CVERecord?id=CVE-2023-38408"},{"name":"CVE-2023-34981","url":"https://www.cve.org/CVERecord?id=CVE-2023-34981"},{"name":"CVE-2023-30449","url":"https://www.cve.org/CVERecord?id=CVE-2023-30449"},{"name":"CVE-2020-36184","url":"https://www.cve.org/CVERecord?id=CVE-2020-36184"},{"name":"CVE-2023-30994","url":"https://www.cve.org/CVERecord?id=CVE-2023-30994"},{"name":"CVE-2020-36180","url":"https://www.cve.org/CVERecord?id=CVE-2020-36180"},{"name":"CVE-2023-21968","url":"https://www.cve.org/CVERecord?id=CVE-2023-21968"},{"name":"CVE-2019-14540","url":"https://www.cve.org/CVERecord?id=CVE-2019-14540"},{"name":"CVE-2023-21930","url":"https://www.cve.org/CVERecord?id=CVE-2023-21930"},{"name":"CVE-2023-25652","url":"https://www.cve.org/CVERecord?id=CVE-2023-25652"},{"name":"CVE-2023-24998","url":"https://www.cve.org/CVERecord?id=CVE-2023-24998"},{"name":"CVE-2023-23487","url":"https://www.cve.org/CVERecord?id=CVE-2023-23487"},{"name":"CVE-2020-10968","url":"https://www.cve.org/CVERecord?id=CVE-2020-10968"},{"name":"CVE-2020-25649","url":"https://www.cve.org/CVERecord?id=CVE-2020-25649"},{"name":"CVE-2023-2976","url":"https://www.cve.org/CVERecord?id=CVE-2023-2976"},{"name":"CVE-2023-40367","url":"https://www.cve.org/CVERecord?id=CVE-2023-40367"},{"name":"CVE-2023-29402","url":"https://www.cve.org/CVERecord?id=CVE-2023-29402"},{"name":"CVE-2023-26048","url":"https://www.cve.org/CVERecord?id=CVE-2023-26048"},{"name":"CVE-2020-11112","url":"https://www.cve.org/CVERecord?id=CVE-2020-11112"},{"name":"CVE-2023-21967","url":"https://www.cve.org/CVERecord?id=CVE-2023-21967"},{"name":"CVE-2020-11111","url":"https://www.cve.org/CVERecord?id=CVE-2020-11111"},{"name":"CVE-2023-34149","url":"https://www.cve.org/CVERecord?id=CVE-2023-34149"},{"name":"CVE-2020-14060","url":"https://www.cve.org/CVERecord?id=CVE-2020-14060"},{"name":"CVE-2020-36188","url":"https://www.cve.org/CVERecord?id=CVE-2020-36188"},{"name":"CVE-2016-1000027","url":"https://www.cve.org/CVERecord?id=CVE-2016-1000027"},{"name":"CVE-2019-14892","url":"https://www.cve.org/CVERecord?id=CVE-2019-14892"},{"name":"CVE-2020-14062","url":"https://www.cve.org/CVERecord?id=CVE-2020-14062"}],"links":[],"reference":"CERTFR-2023-AVI-0839","revisions":[{"description":"Version initiale","revision_date":"2023-10-13T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"},{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Injection de code indirecte \u00e0 distance (XSS)"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">les produits IBM</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une\n\u00e9l\u00e9vation de privil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7047565 du 06 octobre 2023","url":"https://www.ibm.com/support/pages/node/7047565"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7049129 du 10 octobre 2023","url":"https://www.ibm.com/support/pages/node/7049129"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7047481 du 06 octobre 2023","url":"https://www.ibm.com/support/pages/node/7047481"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7049434 du 10 octobre 2023","url":"https://www.ibm.com/support/pages/node/7049434"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7047499 du 06 octobre 2023","url":"https://www.ibm.com/support/pages/node/7047499"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7047754 du 06 octobre 2023","url":"https://www.ibm.com/support/pages/node/7047754"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7049133 du 10 octobre 2023","url":"https://www.ibm.com/support/pages/node/7049133"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7047724 du 06 octobre 2023","url":"https://www.ibm.com/support/pages/node/7047724"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7049435 du 10 octobre 2023","url":"https://www.ibm.com/support/pages/node/7049435"}]}