{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Ivanti Neurons for ITSM toutes versions sans le dernier correctif publi\u00e9 par l'\u00e9diteur","product":{"name":"N/A","vendor":{"name":"Ivanti","scada":false}}},{"description":"Ivanti Standalone Sentry toutes versions sans le dernier correctif publi\u00e9 par l'\u00e9diteur","product":{"name":"N/A","vendor":{"name":"Ivanti","scada":false}}}],"affected_systems_content":"","content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2023-46808","url":"https://www.cve.org/CVERecord?id=CVE-2023-46808"},{"name":"CVE-2023-41724","url":"https://www.cve.org/CVERecord?id=CVE-2023-41724"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9\u00a0Ivanti 000091223 du 20 mars 2024","url":"https://forums.ivanti.com/s/article/CVE-2023-41724-Remote-Code-Execution-for-Ivanti-Standalone-Sentry?language=en_US"},{"title":"Bulletin de s\u00e9curit\u00e9 Ivanti CVE-2023-46808 du 20 mars 2024","url":"https://www.ivanti.com/blog/security-update-for-ivanti-standalone-sentry"},{"title":"Bulletin de s\u00e9curit\u00e9 Ivanti CVE-2023-41724 du 20 mars 2024","url":"https://www.ivanti.com/blog/security-update-for-ivanti-neurons-for-itsm"}],"reference":"CERTFR-2024-AVI-0238","revisions":[{"description":"Version initiale","revision_date":"2024-03-21T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">les produits Ivanti</span>. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Ivanti","vendor_advisories":[{"published_at":"2024-03-20","title":"Bulletin de s\u00e9curit\u00e9 Ivanti 000091223","url":"https://forums.ivanti.com/s/article/CVE-2023-41724-Remote-Code-Execution-for-Ivanti-Standalone-Sentry"},{"published_at":"2024-03-20","title":"Bulletin de s\u00e9curit\u00e9 Ivanti 000091277","url":"https://forums.ivanti.com/s/article/SA-CVE-2023-46808-Authenticated-Remote-File-Write-for-Ivanti-Neurons-for-ITSM?language=en_US"}]}