{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"CiscoWorks Quality of Service Policy Manager 4.x pour Windows int\u00e9grant Common Services versions inf\u00e9rieures \u00e0 la version 4.1 ;","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"CiscoWorks LAN Management Solutions 3.x et 4.x pour Windows int\u00e9grant Common Services versions inf\u00e9rieures \u00e0 la version 4.1 ;","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Cisco Security Manager 3.x et 4.x int\u00e9grant Common Services versions inf\u00e9rieures \u00e0 la version 4.1 ;","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"Cisco Unified Service Monitor 2.x et 8.x int\u00e9grant Common Services versions inf\u00e9rieures \u00e0 la version 4.1 ;","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"CiscoWorks Voice Manager 3.x pour Windows int\u00e9grant Common Services versions inf\u00e9rieures \u00e0 la version 4.1.","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Cisco Unified Operations Manager 2.x et 8.x int\u00e9grant Common Services versions inf\u00e9rieures \u00e0 la version 4.1 ;","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Cisco Common Services. Elle permet\n\u00e0 un personne malintentionn\u00e9e et authentifi\u00e9e sur le syst\u00e8me d'ex\u00e9cuter\ndes commandes avec les privil\u00e8ges de l'administrateur syst\u00e8me au moyen\nd'une URL sp\u00e9cialement con\u00e7ue.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2011-3310","url":"https://www.cve.org/CVERecord?id=CVE-2011-3310"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Cisco 20111019-cs du 19 octobre 2011 :","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111019-cs"}],"reference":"CERTA-2011-AVI-583","revisions":[{"description":"version initiale.","revision_date":"2011-10-21T00:00:00.000000"}],"risks":[{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 corrig\u00e9e dans Cisco Common Services et permet \u00e0\nune personne malintentionn\u00e9e d'ex\u00e9cuter des commandes avec les\nprivil\u00e8ges de l'administrateur syst\u00e8me.\n","title":"Vuln\u00e9rabilit\u00e9 dans CiscoWorks Common Services","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20111019-cs du 19 octobre 2011T","url":null}]}