{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Security QRadar EDR versions ant\u00e9rieures \u00e0 3.12.14","product":{"name":"Security QRadar EDR","vendor":{"name":"IBM","scada":false}}},{"description":"Spectrum Control versions 5.4.x ant\u00e9rieures \u00e0 5.4.13 ","product":{"name":"Spectrum","vendor":{"name":"IBM","scada":false}}},{"description":"Spectrum Protect Plus versions 10.1.x ant\u00e9rieures \u00e0 10.1.6.4 pour Linux","product":{"name":"Spectrum","vendor":{"name":"IBM","scada":false}}},{"description":"QRadar SIEM versions 7.5.x sans les derniers correctifs de s\u00e9curit\u00e9 ","product":{"name":"QRadar SIEM","vendor":{"name":"IBM","scada":false}}},{"description":"QRadar Analyst Workflow versions ant\u00e9rieures \u00e0 2.34.0","product":{"name":"QRadar","vendor":{"name":"IBM","scada":false}}},{"description":"Db2 Big SQL versions ant\u00e9rieures \u00e0 7.4.2 pour Cloud Pak for Data","product":{"name":"Db2","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2024-24790","url":"https://www.cve.org/CVERecord?id=CVE-2024-24790"},{"name":"CVE-2023-52471","url":"https://www.cve.org/CVERecord?id=CVE-2023-52471"},{"name":"CVE-2024-36889","url":"https://www.cve.org/CVERecord?id=CVE-2024-36889"},{"name":"CVE-2015-2156","url":"https://www.cve.org/CVERecord?id=CVE-2015-2156"},{"name":"CVE-2023-43642","url":"https://www.cve.org/CVERecord?id=CVE-2023-43642"},{"name":"CVE-2024-42246","url":"https://www.cve.org/CVERecord?id=CVE-2024-42246"},{"name":"CVE-2024-22020","url":"https://www.cve.org/CVERecord?id=CVE-2024-22020"},{"name":"CVE-2024-26614","url":"https://www.cve.org/CVERecord?id=CVE-2024-26614"},{"name":"CVE-2022-25869","url":"https://www.cve.org/CVERecord?id=CVE-2022-25869"},{"name":"CVE-2024-9355","url":"https://www.cve.org/CVERecord?id=CVE-2024-9355"},{"name":"CVE-2023-26116","url":"https://www.cve.org/CVERecord?id=CVE-2023-26116"},{"name":"CVE-2024-26595","url":"https://www.cve.org/CVERecord?id=CVE-2024-26595"},{"name":"CVE-2024-55565","url":"https://www.cve.org/CVERecord?id=CVE-2024-55565"},{"name":"CVE-2024-26586","url":"https://www.cve.org/CVERecord?id=CVE-2024-26586"},{"name":"CVE-2024-26638","url":"https://www.cve.org/CVERecord?id=CVE-2024-26638"},{"name":"CVE-2024-47831","url":"https://www.cve.org/CVERecord?id=CVE-2024-47831"},{"name":"CVE-2020-7238","url":"https://www.cve.org/CVERecord?id=CVE-2020-7238"},{"name":"CVE-2021-46939","url":"https://www.cve.org/CVERecord?id=CVE-2021-46939"},{"name":"CVE-2024-43799","url":"https://www.cve.org/CVERecord?id=CVE-2024-43799"},{"name":"CVE-2024-49766","url":"https://www.cve.org/CVERecord?id=CVE-2024-49766"},{"name":"CVE-2024-36886","url":"https://www.cve.org/CVERecord?id=CVE-2024-36886"},{"name":"CVE-2021-32036","url":"https://www.cve.org/CVERecord?id=CVE-2021-32036"},{"name":"CVE-2024-26802","url":"https://www.cve.org/CVERecord?id=CVE-2024-26802"},{"name":"CVE-2024-36883","url":"https://www.cve.org/CVERecord?id=CVE-2024-36883"},{"name":"CVE-2024-26665","url":"https://www.cve.org/CVERecord?id=CVE-2024-26665"},{"name":"CVE-2024-40960","url":"https://www.cve.org/CVERecord?id=CVE-2024-40960"},{"name":"CVE-2024-40997","url":"https://www.cve.org/CVERecord?id=CVE-2024-40997"},{"name":"CVE-2023-44270","url":"https://www.cve.org/CVERecord?id=CVE-2023-44270"},{"name":"CVE-2019-20444","url":"https://www.cve.org/CVERecord?id=CVE-2019-20444"},{"name":"CVE-2023-34454","url":"https://www.cve.org/CVERecord?id=CVE-2023-34454"},{"name":"CVE-2024-26645","url":"https://www.cve.org/CVERecord?id=CVE-2024-26645"},{"name":"CVE-2024-42240","url":"https://www.cve.org/CVERecord?id=CVE-2024-42240"},{"name":"CVE-2024-40972","url":"https://www.cve.org/CVERecord?id=CVE-2024-40972"},{"name":"CVE-2024-29025","url":"https://www.cve.org/CVERecord?id=CVE-2024-29025"},{"name":"CVE-2024-40959","url":"https://www.cve.org/CVERecord?id=CVE-2024-40959"},{"name":"CVE-2023-34453","url":"https://www.cve.org/CVERecord?id=CVE-2023-34453"},{"name":"CVE-2023-5072","url":"https://www.cve.org/CVERecord?id=CVE-2023-5072"},{"name":"CVE-2024-45590","url":"https://www.cve.org/CVERecord?id=CVE-2024-45590"},{"name":"CVE-2019-10202","url":"https://www.cve.org/CVERecord?id=CVE-2019-10202"},{"name":"CVE-2024-43796","url":"https://www.cve.org/CVERecord?id=CVE-2024-43796"},{"name":"CVE-2021-32040","url":"https://www.cve.org/CVERecord?id=CVE-2021-32040"},{"name":"CVE-2024-34158","url":"https://www.cve.org/CVERecord?id=CVE-2024-34158"},{"name":"CVE-2024-40974","url":"https://www.cve.org/CVERecord?id=CVE-2024-40974"},{"name":"CVE-2024-4067","url":"https://www.cve.org/CVERecord?id=CVE-2024-4067"},{"name":"CVE-2024-42124","url":"https://www.cve.org/CVERecord?id=CVE-2024-42124"},{"name":"CVE-2023-26117","url":"https://www.cve.org/CVERecord?id=CVE-2023-26117"},{"name":"CVE-2022-3786","url":"https://www.cve.org/CVERecord?id=CVE-2022-3786"},{"name":"CVE-2023-52486","url":"https://www.cve.org/CVERecord?id=CVE-2023-52486"},{"name":"CVE-2014-0193","url":"https://www.cve.org/CVERecord?id=CVE-2014-0193"},{"name":"CVE-2022-21680","url":"https://www.cve.org/CVERecord?id=CVE-2022-21680"},{"name":"CVE-2024-39502","url":"https://www.cve.org/CVERecord?id=CVE-2024-39502"},{"name":"CVE-2024-36005","url":"https://www.cve.org/CVERecord?id=CVE-2024-36005"},{"name":"CVE-2024-26929","url":"https://www.cve.org/CVERecord?id=CVE-2024-26929"},{"name":"CVE-2019-14863","url":"https://www.cve.org/CVERecord?id=CVE-2019-14863"},{"name":"CVE-2023-52683","url":"https://www.cve.org/CVERecord?id=CVE-2023-52683"},{"name":"CVE-2024-42131","url":"https://www.cve.org/CVERecord?id=CVE-2024-42131"},{"name":"CVE-2024-35944","url":"https://www.cve.org/CVERecord?id=CVE-2024-35944"},{"name":"CVE-2024-21538","url":"https://www.cve.org/CVERecord?id=CVE-2024-21538"},{"name":"CVE-2023-52469","url":"https://www.cve.org/CVERecord?id=CVE-2023-52469"},{"name":"CVE-2024-35809","url":"https://www.cve.org/CVERecord?id=CVE-2024-35809"},{"name":"CVE-2024-47764","url":"https://www.cve.org/CVERecord?id=CVE-2024-47764"},{"name":"CVE-2023-52809","url":"https://www.cve.org/CVERecord?id=CVE-2023-52809"},{"name":"CVE-2023-52451","url":"https://www.cve.org/CVERecord?id=CVE-2023-52451"},{"name":"CVE-2024-39472","url":"https://www.cve.org/CVERecord?id=CVE-2024-39472"},{"name":"CVE-2023-34455","url":"https://www.cve.org/CVERecord?id=CVE-2023-34455"},{"name":"CVE-2024-45296","url":"https://www.cve.org/CVERecord?id=CVE-2024-45296"},{"name":"CVE-2021-21295","url":"https://www.cve.org/CVERecord?id=CVE-2021-21295"},{"name":"CVE-2024-26733","url":"https://www.cve.org/CVERecord?id=CVE-2024-26733"},{"name":"CVE-2024-7254","url":"https://www.cve.org/CVERecord?id=CVE-2024-7254"},{"name":"CVE-2024-40998","url":"https://www.cve.org/CVERecord?id=CVE-2024-40998"},{"name":"CVE-2022-46751","url":"https://www.cve.org/CVERecord?id=CVE-2022-46751"},{"name":"CVE-2023-52470","url":"https://www.cve.org/CVERecord?id=CVE-2023-52470"},{"name":"CVE-2021-43797","url":"https://www.cve.org/CVERecord?id=CVE-2021-43797"},{"name":"CVE-2020-7676","url":"https://www.cve.org/CVERecord?id=CVE-2020-7676"},{"name":"CVE-2024-40995","url":"https://www.cve.org/CVERecord?id=CVE-2024-40995"},{"name":"CVE-2023-26118","url":"https://www.cve.org/CVERecord?id=CVE-2023-26118"},{"name":"CVE-2024-42238","url":"https://www.cve.org/CVERecord?id=CVE-2024-42238"},{"name":"CVE-2024-34156","url":"https://www.cve.org/CVERecord?id=CVE-2024-34156"},{"name":"CVE-2024-43830","url":"https://www.cve.org/CVERecord?id=CVE-2024-43830"},{"name":"CVE-2024-39501","url":"https://www.cve.org/CVERecord?id=CVE-2024-39501"},{"name":"CVE-2023-52730","url":"https://www.cve.org/CVERecord?id=CVE-2023-52730"},{"name":"CVE-2024-42090","url":"https://www.cve.org/CVERecord?id=CVE-2024-42090"},{"name":"CVE-2024-26960","url":"https://www.cve.org/CVERecord?id=CVE-2024-26960"},{"name":"CVE-2024-40901","url":"https://www.cve.org/CVERecord?id=CVE-2024-40901"},{"name":"CVE-2021-47321","url":"https://www.cve.org/CVERecord?id=CVE-2021-47321"},{"name":"CVE-2024-26640","url":"https://www.cve.org/CVERecord?id=CVE-2024-26640"},{"name":"CVE-2024-40954","url":"https://www.cve.org/CVERecord?id=CVE-2024-40954"},{"name":"CVE-2024-49767","url":"https://www.cve.org/CVERecord?id=CVE-2024-49767"},{"name":"CVE-2024-22018","url":"https://www.cve.org/CVERecord?id=CVE-2024-22018"},{"name":"CVE-2019-10172","url":"https://www.cve.org/CVERecord?id=CVE-2019-10172"},{"name":"CVE-2024-6119","url":"https://www.cve.org/CVERecord?id=CVE-2024-6119"},{"name":"CVE-2024-37890","url":"https://www.cve.org/CVERecord?id=CVE-2024-37890"},{"name":"CVE-2024-47874","url":"https://www.cve.org/CVERecord?id=CVE-2024-47874"},{"name":"CVE-2024-42322","url":"https://www.cve.org/CVERecord?id=CVE-2024-42322"},{"name":"CVE-2024-27019","url":"https://www.cve.org/CVERecord?id=CVE-2024-27019"},{"name":"CVE-2024-43800","url":"https://www.cve.org/CVERecord?id=CVE-2024-43800"},{"name":"CVE-2024-28863","url":"https://www.cve.org/CVERecord?id=CVE-2024-28863"},{"name":"CVE-2024-39338","url":"https://www.cve.org/CVERecord?id=CVE-2024-39338"},{"name":"CVE-2024-41055","url":"https://www.cve.org/CVERecord?id=CVE-2024-41055"},{"name":"CVE-2024-41076","url":"https://www.cve.org/CVERecord?id=CVE-2024-41076"},{"name":"CVE-2024-39506","url":"https://www.cve.org/CVERecord?id=CVE-2024-39506"},{"name":"CVE-2024-40978","url":"https://www.cve.org/CVERecord?id=CVE-2024-40978"},{"name":"CVE-2021-21290","url":"https://www.cve.org/CVERecord?id=CVE-2021-21290"},{"name":"CVE-2019-10768","url":"https://www.cve.org/CVERecord?id=CVE-2019-10768"},{"name":"CVE-2022-3602","url":"https://www.cve.org/CVERecord?id=CVE-2022-3602"},{"name":"CVE-2024-41044","url":"https://www.cve.org/CVERecord?id=CVE-2024-41044"},{"name":"CVE-2024-40958","url":"https://www.cve.org/CVERecord?id=CVE-2024-40958"},{"name":"CVE-2024-26717","url":"https://www.cve.org/CVERecord?id=CVE-2024-26717"},{"name":"CVE-2023-26136","url":"https://www.cve.org/CVERecord?id=CVE-2023-26136"},{"name":"CVE-2024-42152","url":"https://www.cve.org/CVERecord?id=CVE-2024-42152"},{"name":"CVE-2024-39499","url":"https://www.cve.org/CVERecord?id=CVE-2024-39499"},{"name":"CVE-2024-36006","url":"https://www.cve.org/CVERecord?id=CVE-2024-36006"},{"name":"CVE-2023-52476","url":"https://www.cve.org/CVERecord?id=CVE-2023-52476"},{"name":"CVE-2023-52463","url":"https://www.cve.org/CVERecord?id=CVE-2023-52463"},{"name":"CVE-2024-41064","url":"https://www.cve.org/CVERecord?id=CVE-2024-41064"},{"name":"CVE-2024-34155","url":"https://www.cve.org/CVERecord?id=CVE-2024-34155"},{"name":"CVE-2023-52530","url":"https://www.cve.org/CVERecord?id=CVE-2023-52530"},{"name":"CVE-2024-36000","url":"https://www.cve.org/CVERecord?id=CVE-2024-36000"},{"name":"CVE-2024-26855","url":"https://www.cve.org/CVERecord?id=CVE-2024-26855"},{"name":"CVE-2019-16869","url":"https://www.cve.org/CVERecord?id=CVE-2019-16869"},{"name":"CVE-2022-21681","url":"https://www.cve.org/CVERecord?id=CVE-2022-21681"},{"name":"CVE-2024-42237","url":"https://www.cve.org/CVERecord?id=CVE-2024-42237"},{"name":"CVE-2024-24789","url":"https://www.cve.org/CVERecord?id=CVE-2024-24789"},{"name":"CVE-2024-27011","url":"https://www.cve.org/CVERecord?id=CVE-2024-27011"},{"name":"CVE-2019-20445","url":"https://www.cve.org/CVERecord?id=CVE-2019-20445"}],"links":[],"reference":"CERTFR-2025-AVI-0021","revisions":[{"description":"Version initiale","revision_date":"2025-01-10T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de code indirecte \u00e0 distance (XSS)"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":"2025-01-08","title":"Bulletin de s\u00e9curit\u00e9 IBM 7180462","url":"https://www.ibm.com/support/pages/node/7180462"},{"published_at":"2025-01-07","title":"Bulletin de s\u00e9curit\u00e9 IBM 7180361","url":"https://www.ibm.com/support/pages/node/7180361"},{"published_at":"2025-01-04","title":"Bulletin de s\u00e9curit\u00e9 IBM 7180282","url":"https://www.ibm.com/support/pages/node/7180282"},{"published_at":"2025-01-06","title":"Bulletin de s\u00e9curit\u00e9 IBM 7180314","url":"https://www.ibm.com/support/pages/node/7180314"},{"published_at":"2025-01-09","title":"Bulletin de s\u00e9curit\u00e9 IBM 7180450","url":"https://www.ibm.com/support/pages/node/7180450"},{"published_at":"2025-01-08","title":"Bulletin de s\u00e9curit\u00e9 IBM 7180545","url":"https://www.ibm.com/support/pages/node/7180545"}]}