{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Hirschmann OWL versions ant\u00e9rieures \u00e0 6.3.10","product":{"name":"N/A","vendor":{"name":"Belden","scada":true}}},{"description":"Hirschmann Classic Switch RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS et OCTOPUS versions ant\u00e9rieures \u00e0 09.1.10","product":{"name":"N/A","vendor":{"name":"Belden","scada":true}}},{"description":"Hirschmann HiLCOS BAT versions ant\u00e9rieures \u00e0 10.34-RU5","product":{"name":"N/A","vendor":{"name":"Belden","scada":true}}},{"description":"Hirschmann HiOS RSP, RSPE, MSP40, GRS, OS, BRS et BXS versions ant\u00e9rieures \u00e0 09.4.00","product":{"name":"N/A","vendor":{"name":"Belden","scada":true}}},{"description":"Hirschmann Classic Firewall EAGLE One versions ant\u00e9rieures \u00e0 05.4.04","product":{"name":"N/A","vendor":{"name":"Belden","scada":true}}},{"description":"Hirschmann HiOS RSP-2S, RSPL, RED, RSPS et GRS1020/30 versions ant\u00e9rieures \u00e0 07.1.08","product":{"name":"N/A","vendor":{"name":"Belden","scada":true}}},{"description":"Hirschmann HiSecOs Eagle versions ant\u00e9rieures \u00e0 04.6.02","product":{"name":"N/A","vendor":{"name":"Belden","scada":true}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2022-4304","url":"https://www.cve.org/CVERecord?id=CVE-2022-4304"},{"name":"CVE-2023-0215","url":"https://www.cve.org/CVERecord?id=CVE-2023-0215"},{"name":"CVE-2023-0286","url":"https://www.cve.org/CVERecord?id=CVE-2023-0286"},{"name":"CVE-2022-4450","url":"https://www.cve.org/CVERecord?id=CVE-2022-4450"}],"links":[],"reference":"CERTFR-2024-AVI-0237","revisions":[{"description":"Version initiale","revision_date":"2024-03-20T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Belden. Elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, un\ncontournement de la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Belden","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Belden BSECV-2023-05 du 20 mars 2024","url":"https://assets.belden.com/m/2438562ed6e0c702/original/Belden_Security_Bulletin_BSECV-2023-05.pdf"}]}