{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Storage Protect Plus Server versions 10.1.x ant\u00e9rieures \u00e0 10.1.16.2","product":{"name":"Storage Protect","vendor":{"name":"IBM","scada":false}}},{"description":"WebSphere Application Server Liberty versions ant\u00e9rieures \u00e0 24.0.0.5 ","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"VIOS version 4.1 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 3.0.13.1000","product":{"name":"VIOS","vendor":{"name":"IBM","scada":false}}},{"description":"WebSphere Application Server versions 8.5.x ant\u00e9rieures \u00e0 8.5.5.25","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"AIX versions 7.2 et 7.3 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 1.1.1.2400 ou 3.0.13.1000","product":{"name":"AIX","vendor":{"name":"IBM","scada":false}}},{"description":"WebSphere Application Server versions 9.0.x ant\u00e9rieures \u00e0 9.0.5.20","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"Sterling Control Center versions 6.3.0 ant\u00e9rieures \u00e0 6.3.0.0 iFix06","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Sterling Control Center versions 6.2.1 ant\u00e9rieures \u00e0 6.2.1.0 iFix13","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"VIOS versions 3.1 et 4.1 avec un fichier openssl.base versions ant\u00e9rieures \u00e0 1.1.1.2400 ou 3.0.13.1000","product":{"name":"VIOS","vendor":{"name":"IBM","scada":false}}},{"description":"QRadar SIEM versions 7.5.0.x ant\u00e9rieures \u00e0 7.5.0 UP9 IF01","product":{"name":"QRadar SIEM","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2024-26934","url":"https://www.cve.org/CVERecord?id=CVE-2024-26934"},{"name":"CVE-2023-52477","url":"https://www.cve.org/CVERecord?id=CVE-2023-52477"},{"name":"CVE-2024-27059","url":"https://www.cve.org/CVERecord?id=CVE-2024-27059"},{"name":"CVE-2023-38264","url":"https://www.cve.org/CVERecord?id=CVE-2023-38264"},{"name":"CVE-2024-28849","url":"https://www.cve.org/CVERecord?id=CVE-2024-28849"},{"name":"CVE-2024-26897","url":"https://www.cve.org/CVERecord?id=CVE-2024-26897"},{"name":"CVE-2021-47055","url":"https://www.cve.org/CVERecord?id=CVE-2021-47055"},{"name":"CVE-2024-35154","url":"https://www.cve.org/CVERecord?id=CVE-2024-35154"},{"name":"CVE-2020-36777","url":"https://www.cve.org/CVERecord?id=CVE-2020-36777"},{"name":"CVE-2024-27052","url":"https://www.cve.org/CVERecord?id=CVE-2024-27052"},{"name":"CVE-2023-52425","url":"https://www.cve.org/CVERecord?id=CVE-2023-52425"},{"name":"CVE-2024-25744","url":"https://www.cve.org/CVERecord?id=CVE-2024-25744"},{"name":"CVE-2024-26973","url":"https://www.cve.org/CVERecord?id=CVE-2024-26973"},{"name":"CVE-2021-47185","url":"https://www.cve.org/CVERecord?id=CVE-2021-47185"},{"name":"CVE-2023-45283","url":"https://www.cve.org/CVERecord?id=CVE-2023-45283"},{"name":"CVE-2024-23650","url":"https://www.cve.org/CVERecord?id=CVE-2024-23650"},{"name":"CVE-2023-45288","url":"https://www.cve.org/CVERecord?id=CVE-2023-45288"},{"name":"CVE-2024-26603","url":"https://www.cve.org/CVERecord?id=CVE-2024-26603"},{"name":"CVE-2024-26964","url":"https://www.cve.org/CVERecord?id=CVE-2024-26964"},{"name":"CVE-2021-33198","url":"https://www.cve.org/CVERecord?id=CVE-2021-33198"},{"name":"CVE-2024-26993","url":"https://www.cve.org/CVERecord?id=CVE-2024-26993"},{"name":"CVE-2019-25162","url":"https://www.cve.org/CVERecord?id=CVE-2019-25162"},{"name":"CVE-2022-41715","url":"https://www.cve.org/CVERecord?id=CVE-2022-41715"},{"name":"CVE-2023-39321","url":"https://www.cve.org/CVERecord?id=CVE-2023-39321"},{"name":"CVE-2023-45285","url":"https://www.cve.org/CVERecord?id=CVE-2023-45285"},{"name":"CVE-2024-24783","url":"https://www.cve.org/CVERecord?id=CVE-2024-24783"},{"name":"CVE-2023-45284","url":"https://www.cve.org/CVERecord?id=CVE-2023-45284"},{"name":"CVE-2024-29415","url":"https://www.cve.org/CVERecord?id=CVE-2024-29415"},{"name":"CVE-2023-45289","url":"https://www.cve.org/CVERecord?id=CVE-2023-45289"},{"name":"CVE-2024-3652","url":"https://www.cve.org/CVERecord?id=CVE-2024-3652"},{"name":"CVE-2024-26615","url":"https://www.cve.org/CVERecord?id=CVE-2024-26615"},{"name":"CVE-2024-26643","url":"https://www.cve.org/CVERecord?id=CVE-2024-26643"},{"name":"CVE-2024-26779","url":"https://www.cve.org/CVERecord?id=CVE-2024-26779"},{"name":"CVE-2024-25026","url":"https://www.cve.org/CVERecord?id=CVE-2024-25026"},{"name":"CVE-2023-45290","url":"https://www.cve.org/CVERecord?id=CVE-2023-45290"},{"name":"CVE-2024-32021","url":"https://www.cve.org/CVERecord?id=CVE-2024-32021"},{"name":"CVE-2024-28180","url":"https://www.cve.org/CVERecord?id=CVE-2024-28180"},{"name":"CVE-2024-24806","url":"https://www.cve.org/CVERecord?id=CVE-2024-24806"},{"name":"CVE-2024-23307","url":"https://www.cve.org/CVERecord?id=CVE-2024-23307"},{"name":"CVE-2023-52528","url":"https://www.cve.org/CVERecord?id=CVE-2023-52528"},{"name":"CVE-2024-27048","url":"https://www.cve.org/CVERecord?id=CVE-2024-27048"},{"name":"CVE-2021-47013","url":"https://www.cve.org/CVERecord?id=CVE-2021-47013"},{"name":"CVE-2023-48795","url":"https://www.cve.org/CVERecord?id=CVE-2023-48795"},{"name":"CVE-2024-26593","url":"https://www.cve.org/CVERecord?id=CVE-2024-26593"},{"name":"CVE-2023-39320","url":"https://www.cve.org/CVERecord?id=CVE-2023-39320"},{"name":"CVE-2022-48627","url":"https://www.cve.org/CVERecord?id=CVE-2022-48627"},{"name":"CVE-2021-47171","url":"https://www.cve.org/CVERecord?id=CVE-2021-47171"},{"name":"CVE-2024-26743","url":"https://www.cve.org/CVERecord?id=CVE-2024-26743"},{"name":"CVE-2023-39318","url":"https://www.cve.org/CVERecord?id=CVE-2023-39318"},{"name":"CVE-2023-6240","url":"https://www.cve.org/CVERecord?id=CVE-2023-6240"},{"name":"CVE-2024-32004","url":"https://www.cve.org/CVERecord?id=CVE-2024-32004"},{"name":"CVE-2021-47118","url":"https://www.cve.org/CVERecord?id=CVE-2021-47118"},{"name":"CVE-2024-24788","url":"https://www.cve.org/CVERecord?id=CVE-2024-24788"},{"name":"CVE-2023-51767","url":"https://www.cve.org/CVERecord?id=CVE-2023-51767"},{"name":"CVE-2024-21011","url":"https://www.cve.org/CVERecord?id=CVE-2024-21011"},{"name":"CVE-2024-32020","url":"https://www.cve.org/CVERecord?id=CVE-2024-32020"},{"name":"CVE-2024-5535","url":"https://www.cve.org/CVERecord?id=CVE-2024-5535"},{"name":"CVE-2024-22329","url":"https://www.cve.org/CVERecord?id=CVE-2024-22329"},{"name":"CVE-2019-20372","url":"https://www.cve.org/CVERecord?id=CVE-2019-20372"},{"name":"CVE-2023-45803","url":"https://www.cve.org/CVERecord?id=CVE-2023-45803"},{"name":"CVE-2023-29406","url":"https://www.cve.org/CVERecord?id=CVE-2023-29406"},{"name":"CVE-2023-39319","url":"https://www.cve.org/CVERecord?id=CVE-2023-39319"},{"name":"CVE-2024-32487","url":"https://www.cve.org/CVERecord?id=CVE-2024-32487"},{"name":"CVE-2024-27056","url":"https://www.cve.org/CVERecord?id=CVE-2024-27056"},{"name":"CVE-2024-26642","url":"https://www.cve.org/CVERecord?id=CVE-2024-26642"},{"name":"CVE-2024-24785","url":"https://www.cve.org/CVERecord?id=CVE-2024-24785"},{"name":"CVE-2021-47153","url":"https://www.cve.org/CVERecord?id=CVE-2021-47153"},{"name":"CVE-2023-52439","url":"https://www.cve.org/CVERecord?id=CVE-2023-52439"},{"name":"CVE-2024-26610","url":"https://www.cve.org/CVERecord?id=CVE-2024-26610"},{"name":"CVE-2024-2357","url":"https://www.cve.org/CVERecord?id=CVE-2024-2357"},{"name":"CVE-2024-21094","url":"https://www.cve.org/CVERecord?id=CVE-2024-21094"},{"name":"CVE-2024-26919","url":"https://www.cve.org/CVERecord?id=CVE-2024-26919"},{"name":"CVE-2023-52445","url":"https://www.cve.org/CVERecord?id=CVE-2023-52445"},{"name":"CVE-2024-1394","url":"https://www.cve.org/CVERecord?id=CVE-2024-1394"},{"name":"CVE-2022-2880","url":"https://www.cve.org/CVERecord?id=CVE-2022-2880"},{"name":"CVE-2024-27014","url":"https://www.cve.org/CVERecord?id=CVE-2024-27014"},{"name":"CVE-2021-34558","url":"https://www.cve.org/CVERecord?id=CVE-2021-34558"},{"name":"CVE-2024-32465","url":"https://www.cve.org/CVERecord?id=CVE-2024-32465"},{"name":"CVE-2022-2879","url":"https://www.cve.org/CVERecord?id=CVE-2022-2879"},{"name":"CVE-2024-26892","url":"https://www.cve.org/CVERecord?id=CVE-2024-26892"},{"name":"CVE-2023-52578","url":"https://www.cve.org/CVERecord?id=CVE-2023-52578"},{"name":"CVE-2023-29400","url":"https://www.cve.org/CVERecord?id=CVE-2023-29400"},{"name":"CVE-2024-24787","url":"https://www.cve.org/CVERecord?id=CVE-2024-24787"},{"name":"CVE-2022-38096","url":"https://www.cve.org/CVERecord?id=CVE-2022-38096"},{"name":"CVE-2021-46934","url":"https://www.cve.org/CVERecord?id=CVE-2021-46934"},{"name":"CVE-2023-52598","url":"https://www.cve.org/CVERecord?id=CVE-2023-52598"},{"name":"CVE-2024-4603","url":"https://www.cve.org/CVERecord?id=CVE-2024-4603"},{"name":"CVE-2024-26659","url":"https://www.cve.org/CVERecord?id=CVE-2024-26659"},{"name":"CVE-2024-26933","url":"https://www.cve.org/CVERecord?id=CVE-2024-26933"},{"name":"CVE-2023-46604","url":"https://www.cve.org/CVERecord?id=CVE-2023-46604"},{"name":"CVE-2023-52594","url":"https://www.cve.org/CVERecord?id=CVE-2023-52594"},{"name":"CVE-2024-26693","url":"https://www.cve.org/CVERecord?id=CVE-2024-26693"},{"name":"CVE-2023-52595","url":"https://www.cve.org/CVERecord?id=CVE-2023-52595"},{"name":"CVE-2023-45287","url":"https://www.cve.org/CVERecord?id=CVE-2023-45287"},{"name":"CVE-2022-48624","url":"https://www.cve.org/CVERecord?id=CVE-2022-48624"},{"name":"CVE-2024-4741","url":"https://www.cve.org/CVERecord?id=CVE-2024-4741"},{"name":"CVE-2023-52513","url":"https://www.cve.org/CVERecord?id=CVE-2023-52513"},{"name":"CVE-2023-52610","url":"https://www.cve.org/CVERecord?id=CVE-2023-52610"},{"name":"CVE-2024-3651","url":"https://www.cve.org/CVERecord?id=CVE-2024-3651"},{"name":"CVE-2023-39322","url":"https://www.cve.org/CVERecord?id=CVE-2023-39322"},{"name":"CVE-2023-52606","url":"https://www.cve.org/CVERecord?id=CVE-2023-52606"},{"name":"CVE-2023-6546","url":"https://www.cve.org/CVERecord?id=CVE-2023-6546"},{"name":"CVE-2023-2953","url":"https://www.cve.org/CVERecord?id=CVE-2023-2953"},{"name":"CVE-2024-26872","url":"https://www.cve.org/CVERecord?id=CVE-2024-26872"},{"name":"CVE-2024-26901","url":"https://www.cve.org/CVERecord?id=CVE-2024-26901"},{"name":"CVE-2024-1086","url":"https://www.cve.org/CVERecord?id=CVE-2024-1086"},{"name":"CVE-2024-0565","url":"https://www.cve.org/CVERecord?id=CVE-2024-0565"},{"name":"CVE-2023-39323","url":"https://www.cve.org/CVERecord?id=CVE-2023-39323"},{"name":"CVE-2023-39326","url":"https://www.cve.org/CVERecord?id=CVE-2023-39326"},{"name":"CVE-2024-21085","url":"https://www.cve.org/CVERecord?id=CVE-2024-21085"},{"name":"CVE-2023-29409","url":"https://www.cve.org/CVERecord?id=CVE-2023-29409"},{"name":"CVE-2023-42282","url":"https://www.cve.org/CVERecord?id=CVE-2023-42282"},{"name":"CVE-2023-39325","url":"https://www.cve.org/CVERecord?id=CVE-2023-39325"},{"name":"CVE-2024-0340","url":"https://www.cve.org/CVERecord?id=CVE-2024-0340"},{"name":"CVE-2024-26744","url":"https://www.cve.org/CVERecord?id=CVE-2024-26744"},{"name":"CVE-2024-24786","url":"https://www.cve.org/CVERecord?id=CVE-2024-24786"},{"name":"CVE-2024-32002","url":"https://www.cve.org/CVERecord?id=CVE-2024-32002"},{"name":"CVE-2022-48669","url":"https://www.cve.org/CVERecord?id=CVE-2022-48669"},{"name":"CVE-2023-52565","url":"https://www.cve.org/CVERecord?id=CVE-2023-52565"},{"name":"CVE-2023-52520","url":"https://www.cve.org/CVERecord?id=CVE-2023-52520"},{"name":"CVE-2024-26694","url":"https://www.cve.org/CVERecord?id=CVE-2024-26694"},{"name":"CVE-2024-26664","url":"https://www.cve.org/CVERecord?id=CVE-2024-26664"},{"name":"CVE-2024-24784","url":"https://www.cve.org/CVERecord?id=CVE-2024-24784"},{"name":"CVE-2023-52607","url":"https://www.cve.org/CVERecord?id=CVE-2023-52607"},{"name":"CVE-2018-25091","url":"https://www.cve.org/CVERecord?id=CVE-2018-25091"},{"name":"CVE-2023-6931","url":"https://www.cve.org/CVERecord?id=CVE-2023-6931"}],"links":[],"reference":"CERTFR-2024-AVI-0646","revisions":[{"description":"Version initiale","revision_date":"2024-08-02T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"},{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Injection de code indirecte \u00e0 distance (XSS)"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":"2024-07-29","title":"Bulletin de s\u00e9curit\u00e9 IBM 7161679","url":"https://www.ibm.com/support/pages/node/7161679"},{"published_at":"2024-07-26","title":"Bulletin de s\u00e9curit\u00e9 IBM 7161667","url":"https://www.ibm.com/support/pages/node/7161667"},{"published_at":"2024-07-30","title":"Bulletin de s\u00e9curit\u00e9 IBM 7161954","url":"https://www.ibm.com/support/pages/node/7161954"},{"published_at":"2024-07-30","title":"Bulletin de s\u00e9curit\u00e9 IBM 7162032","url":"https://www.ibm.com/support/pages/node/7162032"},{"published_at":"2024-07-12","title":"Bulletin de s\u00e9curit\u00e9 IBM 7160144","url":"https://www.ibm.com/support/pages/node/7160144"},{"published_at":"2024-07-31","title":"Bulletin de s\u00e9curit\u00e9 IBM 7162077","url":"https://www.ibm.com/support/pages/node/7162077"}]}