{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"IBM Rational ClearQuest 8.x","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Rational ClearCase 8.x","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM WebSphere Message Broker 7.x","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Rational RequisitePro 7.x","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Rational ClearCase 7.x","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Integration Bus 9.x","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Cognos Business Intelligence 10.x","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM WebSphere Portal 8.x","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"IBM WebSphere Message Broker 8.x","product":{"name":"WebSphere","vendor":{"name":"IBM","scada":false}}},{"description":"IBM Rational ClearQuest 7.x","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":null,"content":"## Contournement provisoire\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2014-6492","url":"https://www.cve.org/CVERecord?id=CVE-2014-6492"},{"name":"CVE-2014-6502","url":"https://www.cve.org/CVERecord?id=CVE-2014-6502"},{"name":"CVE-2014-6512","url":"https://www.cve.org/CVERecord?id=CVE-2014-6512"},{"name":"CVE-2014-6531","url":"https://www.cve.org/CVERecord?id=CVE-2014-6531"},{"name":"CVE-2014-6476","url":"https://www.cve.org/CVERecord?id=CVE-2014-6476"},{"name":"CVE-2014-6458","url":"https://www.cve.org/CVERecord?id=CVE-2014-6458"},{"name":"CVE-2014-6457","url":"https://www.cve.org/CVERecord?id=CVE-2014-6457"},{"name":"CVE-2014-6527","url":"https://www.cve.org/CVERecord?id=CVE-2014-6527"},{"name":"CVE-2014-6562","url":"https://www.cve.org/CVERecord?id=CVE-2014-6562"},{"name":"CVE-2014-4288","url":"https://www.cve.org/CVERecord?id=CVE-2014-4288"},{"name":"CVE-2014-6511","url":"https://www.cve.org/CVERecord?id=CVE-2014-6511"},{"name":"CVE-2014-6532","url":"https://www.cve.org/CVERecord?id=CVE-2014-6532"},{"name":"CVE-2014-6513","url":"https://www.cve.org/CVERecord?id=CVE-2014-6513"},{"name":"CVE-2014-6493","url":"https://www.cve.org/CVERecord?id=CVE-2014-6493"},{"name":"CVE-2014-6517","url":"https://www.cve.org/CVERecord?id=CVE-2014-6517"},{"name":"CVE-2014-3509","url":"https://www.cve.org/CVERecord?id=CVE-2014-3509"},{"name":"CVE-2014-6215","url":"https://www.cve.org/CVERecord?id=CVE-2014-6215"},{"name":"CVE-2014-6503","url":"https://www.cve.org/CVERecord?id=CVE-2014-6503"},{"name":"CVE-2014-5139","url":"https://www.cve.org/CVERecord?id=CVE-2014-5139"},{"name":"CVE-2014-6466","url":"https://www.cve.org/CVERecord?id=CVE-2014-6466"},{"name":"CVE-2014-6468","url":"https://www.cve.org/CVERecord?id=CVE-2014-6468"},{"name":"CVE-2014-3065","url":"https://www.cve.org/CVERecord?id=CVE-2014-3065"},{"name":"CVE-2014-4815","url":"https://www.cve.org/CVERecord?id=CVE-2014-4815"},{"name":"CVE-2014-4263","url":"https://www.cve.org/CVERecord?id=CVE-2014-4263"},{"name":"CVE-2014-6546","url":"https://www.cve.org/CVERecord?id=CVE-2014-6546"},{"name":"CVE-2014-3511","url":"https://www.cve.org/CVERecord?id=CVE-2014-3511"},{"name":"CVE-2014-6558","url":"https://www.cve.org/CVERecord?id=CVE-2014-6558"},{"name":"CVE-2014-6506","url":"https://www.cve.org/CVERecord?id=CVE-2014-6506"},{"name":"CVE-2014-6504","url":"https://www.cve.org/CVERecord?id=CVE-2014-6504"},{"name":"CVE-2014-6515","url":"https://www.cve.org/CVERecord?id=CVE-2014-6515"},{"name":"CVE-2014-4244","url":"https://www.cve.org/CVERecord?id=CVE-2014-4244"},{"name":"CVE-2014-6519","url":"https://www.cve.org/CVERecord?id=CVE-2014-6519"}],"links":[],"reference":"CERTFR-2014-AVI-525","revisions":[{"description":"version initiale.","revision_date":"2014-12-11T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de code indirecte \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits IBM</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, un\ncontournement de la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM du 10 d\u00e9cembre 2014","url":"http://www.ibm.com/support/docview.wss?uid=swg24038915"}]}