{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"CTPOS versions ant\u00e9rieures \u00e0 6.6R2","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Juniper Security Threat Response Manager versions 2012.1, 2013.1, 2013.2","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}},{"description":"CTPView versions 4.2, 4.3, 4.4, 4.5, 4.6","product":{"name":"N/A","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Junos Space jusqu'\u00e0 la version 13.3","product":{"name":"Junos Space","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Juniper Secure Analytics versions 2013.2, 2014.1, 2014.2","product":{"name":"Secure Analytics","vendor":{"name":"Juniper Networks","scada":false}}},{"description":"Network and Security Manager (NSM) version 2012.2","product":{"name":"Security","vendor":{"name":"ESET","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2012-3158","url":"https://www.cve.org/CVERecord?id=CVE-2012-3158"},{"name":"CVE-2010-3853","url":"https://www.cve.org/CVERecord?id=CVE-2010-3853"},{"name":"CVE-2014-0075","url":"https://www.cve.org/CVERecord?id=CVE-2014-0075"},{"name":"CVE-2010-3081","url":"https://www.cve.org/CVERecord?id=CVE-2010-3081"},{"name":"CVE-2012-0789","url":"https://www.cve.org/CVERecord?id=CVE-2012-0789"},{"name":"CVE-2012-2329","url":"https://www.cve.org/CVERecord?id=CVE-2012-2329"},{"name":"CVE-2014-0460","url":"https://www.cve.org/CVERecord?id=CVE-2014-0460"},{"name":"CVE-2011-4609","url":"https://www.cve.org/CVERecord?id=CVE-2011-4609"},{"name":"CVE-2011-0421","url":"https://www.cve.org/CVERecord?id=CVE-2011-0421"},{"name":"CVE-2012-0781","url":"https://www.cve.org/CVERecord?id=CVE-2012-0781"},{"name":"CVE-2014-4827","url":"https://www.cve.org/CVERecord?id=CVE-2014-4827"},{"name":"CVE-2013-1635","url":"https://www.cve.org/CVERecord?id=CVE-2013-1635"},{"name":"CVE-2011-0216","url":"https://www.cve.org/CVERecord?id=CVE-2011-0216"},{"name":"CVE-2013-1620","url":"https://www.cve.org/CVERecord?id=CVE-2013-1620"},{"name":"CVE-2014-0119","url":"https://www.cve.org/CVERecord?id=CVE-2014-0119"},{"name":"CVE-2012-2110","url":"https://www.cve.org/CVERecord?id=CVE-2012-2110"},{"name":"CVE-2014-7186","url":"https://www.cve.org/CVERecord?id=CVE-2014-7186"},{"name":"CVE-2009-2416","url":"https://www.cve.org/CVERecord?id=CVE-2009-2416"},{"name":"CVE-2012-0788","url":"https://www.cve.org/CVERecord?id=CVE-2012-0788"},{"name":"CVE-2010-4755","url":"https://www.cve.org/CVERecord?id=CVE-2010-4755"},{"name":"CVE-2013-1775","url":"https://www.cve.org/CVERecord?id=CVE-2013-1775"},{"name":"CVE-2009-5029","url":"https://www.cve.org/CVERecord?id=CVE-2009-5029"},{"name":"CVE-2011-1153","url":"https://www.cve.org/CVERecord?id=CVE-2011-1153"},{"name":"CVE-2009-3563","url":"https://www.cve.org/CVERecord?id=CVE-2009-3563"},{"name":"CVE-2014-0411","url":"https://www.cve.org/CVERecord?id=CVE-2014-0411"},{"name":"CVE-2013-1643","url":"https://www.cve.org/CVERecord?id=CVE-2013-1643"},{"name":"CVE-2013-0791","url":"https://www.cve.org/CVERecord?id=CVE-2013-0791"},{"name":"CVE-2010-1646","url":"https://www.cve.org/CVERecord?id=CVE-2010-1646"},{"name":"CVE-2014-7169","url":"https://www.cve.org/CVERecord?id=CVE-2014-7169"},{"name":"CVE-2011-1944","url":"https://www.cve.org/CVERecord?id=CVE-2011-1944"},{"name":"CVE-2014-0099","url":"https://www.cve.org/CVERecord?id=CVE-2014-0099"},{"name":"CVE-2011-0010","url":"https://www.cve.org/CVERecord?id=CVE-2011-0010"},{"name":"CVE-2011-1398","url":"https://www.cve.org/CVERecord?id=CVE-2011-1398"},{"name":"CVE-2011-2834","url":"https://www.cve.org/CVERecord?id=CVE-2011-2834"},{"name":"CVE-2014-4825","url":"https://www.cve.org/CVERecord?id=CVE-2014-4825"},{"name":"CVE-2010-4707","url":"https://www.cve.org/CVERecord?id=CVE-2010-4707"},{"name":"CVE-2012-0882","url":"https://www.cve.org/CVERecord?id=CVE-2012-0882"},{"name":"CVE-2009-0159","url":"https://www.cve.org/CVERecord?id=CVE-2009-0159"},{"name":"CVE-2014-0453","url":"https://www.cve.org/CVERecord?id=CVE-2014-0453"},{"name":"CVE-2011-0708","url":"https://www.cve.org/CVERecord?id=CVE-2011-0708"},{"name":"CVE-2014-6271","url":"https://www.cve.org/CVERecord?id=CVE-2014-6271"},{"name":"CVE-2014-6277","url":"https://www.cve.org/CVERecord?id=CVE-2014-6277"},{"name":"CVE-2014-1568","url":"https://www.cve.org/CVERecord?id=CVE-2014-1568"},{"name":"CVE-2010-0830","url":"https://www.cve.org/CVERecord?id=CVE-2010-0830"},{"name":"CVE-2010-0426","url":"https://www.cve.org/CVERecord?id=CVE-2010-0426"},{"name":"CVE-2014-0423","url":"https://www.cve.org/CVERecord?id=CVE-2014-0423"},{"name":"CVE-2012-2311","url":"https://www.cve.org/CVERecord?id=CVE-2012-2311"},{"name":"CVE-2014-0224","url":"https://www.cve.org/CVERecord?id=CVE-2014-0224"},{"name":"CVE-2014-4830","url":"https://www.cve.org/CVERecord?id=CVE-2014-4830"},{"name":"CVE-2011-3368","url":"https://www.cve.org/CVERecord?id=CVE-2011-3368"},{"name":"CVE-2014-2532","url":"https://www.cve.org/CVERecord?id=CVE-2014-2532"},{"name":"CVE-2014-4828","url":"https://www.cve.org/CVERecord?id=CVE-2014-4828"},{"name":"CVE-2014-0095","url":"https://www.cve.org/CVERecord?id=CVE-2014-0095"},{"name":"CVE-2010-0427","url":"https://www.cve.org/CVERecord?id=CVE-2010-0427"},{"name":"CVE-2014-3470","url":"https://www.cve.org/CVERecord?id=CVE-2014-3470"},{"name":"CVE-2014-3062","url":"https://www.cve.org/CVERecord?id=CVE-2014-3062"},{"name":"CVE-2012-0831","url":"https://www.cve.org/CVERecord?id=CVE-2012-0831"},{"name":"CVE-2009-2414","url":"https://www.cve.org/CVERecord?id=CVE-2009-2414"},{"name":"CVE-2012-0057","url":"https://www.cve.org/CVERecord?id=CVE-2012-0057"},{"name":"CVE-2014-7187","url":"https://www.cve.org/CVERecord?id=CVE-2014-7187"},{"name":"CVE-2010-2956","url":"https://www.cve.org/CVERecord?id=CVE-2010-2956"},{"name":"CVE-2011-3905","url":"https://www.cve.org/CVERecord?id=CVE-2011-3905"},{"name":"CVE-2014-4833","url":"https://www.cve.org/CVERecord?id=CVE-2014-4833"},{"name":"CVE-2011-4566","url":"https://www.cve.org/CVERecord?id=CVE-2011-4566"},{"name":"CVE-2014-0837","url":"https://www.cve.org/CVERecord?id=CVE-2014-0837"},{"name":"CVE-2010-4008","url":"https://www.cve.org/CVERecord?id=CVE-2010-4008"},{"name":"CVE-2014-6278","url":"https://www.cve.org/CVERecord?id=CVE-2014-6278"},{"name":"CVE-2012-1172","url":"https://www.cve.org/CVERecord?id=CVE-2012-1172"},{"name":"CVE-2014-0076","url":"https://www.cve.org/CVERecord?id=CVE-2014-0076"},{"name":"CVE-2010-1163","url":"https://www.cve.org/CVERecord?id=CVE-2010-1163"},{"name":"CVE-2011-4317","url":"https://www.cve.org/CVERecord?id=CVE-2011-4317"},{"name":"CVE-2011-4885","url":"https://www.cve.org/CVERecord?id=CVE-2011-4885"},{"name":"CVE-2010-5107","url":"https://www.cve.org/CVERecord?id=CVE-2010-5107"},{"name":"CVE-2009-1265","url":"https://www.cve.org/CVERecord?id=CVE-2009-1265"},{"name":"CVE-2010-3316","url":"https://www.cve.org/CVERecord?id=CVE-2010-3316"},{"name":"CVE-2012-3510","url":"https://www.cve.org/CVERecord?id=CVE-2012-3510"},{"name":"CVE-2011-5000","url":"https://www.cve.org/CVERecord?id=CVE-2011-5000"},{"name":"CVE-2010-3435","url":"https://www.cve.org/CVERecord?id=CVE-2010-3435"},{"name":"CVE-2011-3919","url":"https://www.cve.org/CVERecord?id=CVE-2011-3919"},{"name":"CVE-2012-2337","url":"https://www.cve.org/CVERecord?id=CVE-2012-2337"},{"name":"CVE-2011-1089","url":"https://www.cve.org/CVERecord?id=CVE-2011-1089"},{"name":"CVE-2014-0096","url":"https://www.cve.org/CVERecord?id=CVE-2014-0096"},{"name":"CVE-2013-5908","url":"https://www.cve.org/CVERecord?id=CVE-2013-5908"},{"name":"CVE-2014-3091","url":"https://www.cve.org/CVERecord?id=CVE-2014-3091"},{"name":"CVE-2012-2131","url":"https://www.cve.org/CVERecord?id=CVE-2012-2131"}],"links":[],"reference":"CERTFR-2014-AVI-480","revisions":[{"description":"version initiale.","revision_date":"2014-11-13T00:00:00.000000"}],"risks":[{"description":"Injection de code indirecte \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"},{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"D\u00e9ni de service"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans les produits <span\nclass=\"textit\">Juniper</span>. Certaines d'entre elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une\nex\u00e9cution de code arbitraire et un d\u00e9ni de service \u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Juniper JSA10661 du 11 novembre 2014","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10661"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Juniper JSA10657 du 11 novembre 2014","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10657"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Juniper JSA10658 du 11 novembre 2014","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10658"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Juniper JSA10659 du 11 novembre 2014","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10659"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Juniper JSA10660 du 11 novembre 2014","url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10660"}]}