{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Xerox FreeFlow Print Server version 7","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"Xerox FreeFlow Print Server version 8","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"Xerox FreeFlow Print Server version 9","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2014-0417","url":"https://www.cve.org/CVERecord?id=CVE-2014-0417"},{"name":"CVE-2013-5910","url":"https://www.cve.org/CVERecord?id=CVE-2013-5910"},{"name":"CVE-2012-6139","url":"https://www.cve.org/CVERecord?id=CVE-2012-6139"},{"name":"CVE-2014-0403","url":"https://www.cve.org/CVERecord?id=CVE-2014-0403"},{"name":"CVE-2014-0411","url":"https://www.cve.org/CVERecord?id=CVE-2014-0411"},{"name":"CVE-2011-3970","url":"https://www.cve.org/CVERecord?id=CVE-2011-3970"},{"name":"CVE-2012-2871","url":"https://www.cve.org/CVERecord?id=CVE-2012-2871"},{"name":"CVE-2014-0424","url":"https://www.cve.org/CVERecord?id=CVE-2014-0424"},{"name":"CVE-2014-0422","url":"https://www.cve.org/CVERecord?id=CVE-2014-0422"},{"name":"CVE-2013-5884","url":"https://www.cve.org/CVERecord?id=CVE-2013-5884"},{"name":"CVE-2012-2870","url":"https://www.cve.org/CVERecord?id=CVE-2012-2870"},{"name":"CVE-2013-5907","url":"https://www.cve.org/CVERecord?id=CVE-2013-5907"},{"name":"CVE-2013-5898","url":"https://www.cve.org/CVERecord?id=CVE-2013-5898"},{"name":"CVE-2014-0387","url":"https://www.cve.org/CVERecord?id=CVE-2014-0387"},{"name":"CVE-2007-6750","url":"https://www.cve.org/CVERecord?id=CVE-2007-6750"},{"name":"CVE-2012-2893","url":"https://www.cve.org/CVERecord?id=CVE-2012-2893"},{"name":"CVE-2014-0423","url":"https://www.cve.org/CVERecord?id=CVE-2014-0423"},{"name":"CVE-2013-5821","url":"https://www.cve.org/CVERecord?id=CVE-2013-5821"},{"name":"CVE-2014-0410","url":"https://www.cve.org/CVERecord?id=CVE-2014-0410"},{"name":"CVE-2013-5888","url":"https://www.cve.org/CVERecord?id=CVE-2013-5888"},{"name":"CVE-2014-0376","url":"https://www.cve.org/CVERecord?id=CVE-2014-0376"},{"name":"CVE-2013-5889","url":"https://www.cve.org/CVERecord?id=CVE-2013-5889"},{"name":"CVE-2014-0416","url":"https://www.cve.org/CVERecord?id=CVE-2014-0416"},{"name":"CVE-2013-5899","url":"https://www.cve.org/CVERecord?id=CVE-2013-5899"},{"name":"CVE-2013-4124","url":"https://www.cve.org/CVERecord?id=CVE-2013-4124"},{"name":"CVE-2013-5878","url":"https://www.cve.org/CVERecord?id=CVE-2013-5878"},{"name":"CVE-2013-5906","url":"https://www.cve.org/CVERecord?id=CVE-2013-5906"},{"name":"CVE-2014-0373","url":"https://www.cve.org/CVERecord?id=CVE-2014-0373"},{"name":"CVE-2013-5905","url":"https://www.cve.org/CVERecord?id=CVE-2013-5905"},{"name":"CVE-2014-0418","url":"https://www.cve.org/CVERecord?id=CVE-2014-0418"},{"name":"CVE-2014-0415","url":"https://www.cve.org/CVERecord?id=CVE-2014-0415"},{"name":"CVE-2014-0428","url":"https://www.cve.org/CVERecord?id=CVE-2014-0428"},{"name":"CVE-2014-0375","url":"https://www.cve.org/CVERecord?id=CVE-2014-0375"},{"name":"CVE-2014-0390","url":"https://www.cve.org/CVERecord?id=CVE-2014-0390"},{"name":"CVE-2014-0368","url":"https://www.cve.org/CVERecord?id=CVE-2014-0368"},{"name":"CVE-2013-5887","url":"https://www.cve.org/CVERecord?id=CVE-2013-5887"},{"name":"CVE-2013-5872","url":"https://www.cve.org/CVERecord?id=CVE-2013-5872"},{"name":"CVE-2013-5902","url":"https://www.cve.org/CVERecord?id=CVE-2013-5902"},{"name":"CVE-2013-5896","url":"https://www.cve.org/CVERecord?id=CVE-2013-5896"},{"name":"CVE-2011-1202","url":"https://www.cve.org/CVERecord?id=CVE-2011-1202"},{"name":"CVE-2012-2825","url":"https://www.cve.org/CVERecord?id=CVE-2012-2825"},{"name":"CVE-2013-4475","url":"https://www.cve.org/CVERecord?id=CVE-2013-4475"}],"links":[],"reference":"CERTFR-2014-AVI-193","revisions":[{"description":"version initiale.","revision_date":"2014-04-17T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">Xerox FreeFlow Print Server</span>. Certaines d'entre\nelles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code\narbitraire \u00e0 distance, un contournement de la politique de s\u00e9curit\u00e9 et\nune atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Xerox FreeFlow Print Server","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Xerox XRX14-002 du 18 f\u00e9vrier 2014","url":"http://www.xerox.com/download/security/security-bulletin/10be6-4f72fbafb1868/cert_XRX14-002_v1.0.pdf"}]}