{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"IBM WebSphere Portal 6.1 ;","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"IBM WebSphere Portal 6.0 ;","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"IBM WebSphere Portal 5.1.","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s non document\u00e9es permettent \u00e0 une personne\nmalintentionn\u00e9e de contourner la politique de s\u00e9curit\u00e9 notamment via\nBasicAuthTAI.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 IBM swg27007603 du 12 d\u00e9cembre 2008 :","url":"http://www-01.ibm.com/support/docview.wss?uid=swg27007603"}],"reference":"CERTA-2008-AVI-602","revisions":[{"description":"version initiale.","revision_date":"2008-12-17T00:00:00.000000"}],"risks":[{"description":"Contournement de la politique de s\u00e9curit\u00e9"}],"summary":"Plusieurs vuln\u00e9rabilit\u00e9s dans <span class=\"textit\">IBM WebSphere\nPortal</span> permettent \u00e0 une personne malveillante de contourner la\npolitique de s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans IBM WebSphere Portal","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM swg7007603 du 12 d\u00e9cembre 2008","url":null}]}