{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"IBM Db2 on Cloud Pak for Data et Db2 Warehouse on Cloud Pak for Data versions post\u00e9rieures \u00e0 3.5 et ant\u00e9rieures \u00e0 4.8.5","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"DevOps Code ClearCase versions 11.0.x sans le dernier correctif de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Rational ClearCase versions 9.1.x et 10.0.0.x sans le dernier correctif de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2024-1597","url":"https://www.cve.org/CVERecord?id=CVE-2024-1597"},{"name":"CVE-2023-49568","url":"https://www.cve.org/CVERecord?id=CVE-2023-49568"},{"name":"CVE-2024-25030","url":"https://www.cve.org/CVERecord?id=CVE-2024-25030"},{"name":"CVE-2023-45857","url":"https://www.cve.org/CVERecord?id=CVE-2023-45857"},{"name":"CVE-2024-23944","url":"https://www.cve.org/CVERecord?id=CVE-2024-23944"},{"name":"CVE-2020-9546","url":"https://www.cve.org/CVERecord?id=CVE-2020-9546"},{"name":"CVE-2020-13956","url":"https://www.cve.org/CVERecord?id=CVE-2020-13956"},{"name":"CVE-2020-10673","url":"https://www.cve.org/CVERecord?id=CVE-2020-10673"},{"name":"CVE-2020-35728","url":"https://www.cve.org/CVERecord?id=CVE-2020-35728"},{"name":"CVE-2020-36181","url":"https://www.cve.org/CVERecord?id=CVE-2020-36181"},{"name":"CVE-2020-9548","url":"https://www.cve.org/CVERecord?id=CVE-2020-9548"},{"name":"CVE-2020-36182","url":"https://www.cve.org/CVERecord?id=CVE-2020-36182"},{"name":"CVE-2020-24616","url":"https://www.cve.org/CVERecord?id=CVE-2020-24616"},{"name":"CVE-2023-52296","url":"https://www.cve.org/CVERecord?id=CVE-2023-52296"},{"name":"CVE-2020-36185","url":"https://www.cve.org/CVERecord?id=CVE-2020-36185"},{"name":"CVE-2024-25046","url":"https://www.cve.org/CVERecord?id=CVE-2024-25046"},{"name":"CVE-2023-50782","url":"https://www.cve.org/CVERecord?id=CVE-2023-50782"},{"name":"CVE-2022-36364","url":"https://www.cve.org/CVERecord?id=CVE-2022-36364"},{"name":"CVE-2022-1996","url":"https://www.cve.org/CVERecord?id=CVE-2022-1996"},{"name":"CVE-2019-16942","url":"https://www.cve.org/CVERecord?id=CVE-2019-16942"},{"name":"CVE-2019-11358","url":"https://www.cve.org/CVERecord?id=CVE-2019-11358"},{"name":"CVE-2020-9547","url":"https://www.cve.org/CVERecord?id=CVE-2020-9547"},{"name":"CVE-2020-36179","url":"https://www.cve.org/CVERecord?id=CVE-2020-36179"},{"name":"CVE-2020-10650","url":"https://www.cve.org/CVERecord?id=CVE-2020-10650"},{"name":"CVE-2023-44270","url":"https://www.cve.org/CVERecord?id=CVE-2023-44270"},{"name":"CVE-2020-36186","url":"https://www.cve.org/CVERecord?id=CVE-2020-36186"},{"name":"CVE-2020-36189","url":"https://www.cve.org/CVERecord?id=CVE-2020-36189"},{"name":"CVE-2020-35490","url":"https://www.cve.org/CVERecord?id=CVE-2020-35490"},{"name":"CVE-2023-34462","url":"https://www.cve.org/CVERecord?id=CVE-2023-34462"},{"name":"CVE-2018-1313","url":"https://www.cve.org/CVERecord?id=CVE-2018-1313"},{"name":"CVE-2022-46337","url":"https://www.cve.org/CVERecord?id=CVE-2022-46337"},{"name":"CVE-2021-20190","url":"https://www.cve.org/CVERecord?id=CVE-2021-20190"},{"name":"CVE-2019-13224","url":"https://www.cve.org/CVERecord?id=CVE-2019-13224"},{"name":"CVE-2019-19204","url":"https://www.cve.org/CVERecord?id=CVE-2019-19204"},{"name":"CVE-2020-11113","url":"https://www.cve.org/CVERecord?id=CVE-2020-11113"},{"name":"CVE-2024-27254","url":"https://www.cve.org/CVERecord?id=CVE-2024-27254"},{"name":"CVE-2020-10672","url":"https://www.cve.org/CVERecord?id=CVE-2020-10672"},{"name":"CVE-2023-51074","url":"https://www.cve.org/CVERecord?id=CVE-2023-51074"},{"name":"CVE-2020-10969","url":"https://www.cve.org/CVERecord?id=CVE-2020-10969"},{"name":"CVE-2020-23064","url":"https://www.cve.org/CVERecord?id=CVE-2020-23064"},{"name":"CVE-2024-22195","url":"https://www.cve.org/CVERecord?id=CVE-2024-22195"},{"name":"CVE-2020-36187","url":"https://www.cve.org/CVERecord?id=CVE-2020-36187"},{"name":"CVE-2020-11620","url":"https://www.cve.org/CVERecord?id=CVE-2020-11620"},{"name":"CVE-2023-36478","url":"https://www.cve.org/CVERecord?id=CVE-2023-36478"},{"name":"CVE-2015-1832","url":"https://www.cve.org/CVERecord?id=CVE-2015-1832"},{"name":"CVE-2021-21295","url":"https://www.cve.org/CVERecord?id=CVE-2021-21295"},{"name":"CVE-2020-24750","url":"https://www.cve.org/CVERecord?id=CVE-2020-24750"},{"name":"CVE-2024-22190","url":"https://www.cve.org/CVERecord?id=CVE-2024-22190"},{"name":"CVE-2019-16163","url":"https://www.cve.org/CVERecord?id=CVE-2019-16163"},{"name":"CVE-2019-16943","url":"https://www.cve.org/CVERecord?id=CVE-2019-16943"},{"name":"CVE-2023-51775","url":"https://www.cve.org/CVERecord?id=CVE-2023-51775"},{"name":"CVE-2024-22360","url":"https://www.cve.org/CVERecord?id=CVE-2024-22360"},{"name":"CVE-2024-26130","url":"https://www.cve.org/CVERecord?id=CVE-2024-26130"},{"name":"CVE-2019-20330","url":"https://www.cve.org/CVERecord?id=CVE-2019-20330"},{"name":"CVE-2020-14195","url":"https://www.cve.org/CVERecord?id=CVE-2020-14195"},{"name":"CVE-2023-44981","url":"https://www.cve.org/CVERecord?id=CVE-2023-44981"},{"name":"CVE-2018-10237","url":"https://www.cve.org/CVERecord?id=CVE-2018-10237"},{"name":"CVE-2020-35491","url":"https://www.cve.org/CVERecord?id=CVE-2020-35491"},{"name":"CVE-2019-17531","url":"https://www.cve.org/CVERecord?id=CVE-2019-17531"},{"name":"CVE-2023-38729","url":"https://www.cve.org/CVERecord?id=CVE-2023-38729"},{"name":"CVE-2024-21626","url":"https://www.cve.org/CVERecord?id=CVE-2024-21626"},{"name":"CVE-2019-19203","url":"https://www.cve.org/CVERecord?id=CVE-2019-19203"},{"name":"CVE-2020-14061","url":"https://www.cve.org/CVERecord?id=CVE-2020-14061"},{"name":"CVE-2023-40167","url":"https://www.cve.org/CVERecord?id=CVE-2023-40167"},{"name":"CVE-2023-41900","url":"https://www.cve.org/CVERecord?id=CVE-2023-41900"},{"name":"CVE-2022-42004","url":"https://www.cve.org/CVERecord?id=CVE-2022-42004"},{"name":"CVE-2020-11619","url":"https://www.cve.org/CVERecord?id=CVE-2020-11619"},{"name":"CVE-2020-36183","url":"https://www.cve.org/CVERecord?id=CVE-2020-36183"},{"name":"CVE-2020-8840","url":"https://www.cve.org/CVERecord?id=CVE-2020-8840"},{"name":"CVE-2023-36479","url":"https://www.cve.org/CVERecord?id=CVE-2023-36479"},{"name":"CVE-2024-24549","url":"https://www.cve.org/CVERecord?id=CVE-2024-24549"},{"name":"CVE-2020-36184","url":"https://www.cve.org/CVERecord?id=CVE-2020-36184"},{"name":"CVE-2020-36180","url":"https://www.cve.org/CVERecord?id=CVE-2020-36180"},{"name":"CVE-2020-11022","url":"https://www.cve.org/CVERecord?id=CVE-2020-11022"},{"name":"CVE-2021-31684","url":"https://www.cve.org/CVERecord?id=CVE-2021-31684"},{"name":"CVE-2020-36518","url":"https://www.cve.org/CVERecord?id=CVE-2020-36518"},{"name":"CVE-2023-261257","url":"https://www.cve.org/CVERecord?id=CVE-2023-261257"},{"name":"CVE-2023-49083","url":"https://www.cve.org/CVERecord?id=CVE-2023-49083"},{"name":"CVE-2023-49569","url":"https://www.cve.org/CVERecord?id=CVE-2023-49569"},{"name":"CVE-2020-10968","url":"https://www.cve.org/CVERecord?id=CVE-2020-10968"},{"name":"CVE-2022-42003","url":"https://www.cve.org/CVERecord?id=CVE-2022-42003"},{"name":"CVE-2020-25649","url":"https://www.cve.org/CVERecord?id=CVE-2020-25649"},{"name":"CVE-2024-0690","url":"https://www.cve.org/CVERecord?id=CVE-2024-0690"},{"name":"CVE-2024-22354","url":"https://www.cve.org/CVERecord?id=CVE-2024-22354"},{"name":"CVE-2020-11112","url":"https://www.cve.org/CVERecord?id=CVE-2020-11112"},{"name":"CVE-2019-19012","url":"https://www.cve.org/CVERecord?id=CVE-2019-19012"},{"name":"CVE-2020-11111","url":"https://www.cve.org/CVERecord?id=CVE-2020-11111"},{"name":"CVE-2012-2677","url":"https://www.cve.org/CVERecord?id=CVE-2012-2677"},{"name":"CVE-2020-14060","url":"https://www.cve.org/CVERecord?id=CVE-2020-14060"},{"name":"CVE-2020-36188","url":"https://www.cve.org/CVERecord?id=CVE-2020-36188"},{"name":"CVE-2020-11023","url":"https://www.cve.org/CVERecord?id=CVE-2020-11023"},{"name":"CVE-2020-14062","url":"https://www.cve.org/CVERecord?id=CVE-2020-14062"}],"links":[],"reference":"CERTFR-2024-AVI-0459","revisions":[{"description":"Version initiale","revision_date":"2024-05-31T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"},{"description":"Injection de code indirecte \u00e0 distance (XSS)"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":"2024-05-29","title":"Bulletin de s\u00e9curit\u00e9 IBM 7155114","url":"https://www.ibm.com/support/pages/node/7155114"},{"published_at":"2024-05-28","title":"Bulletin de s\u00e9curit\u00e9 IBM 7155078","url":"https://www.ibm.com/support/pages/node/7155078"}]}