{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Cisco Digital Media Manager (DMM)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco NAC Guest Server versions ant\u00e9rieures \u00e0 2.1.0 (disponible le 19 f\u00e9vrier 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"IOS-XR for Cisco Network Convergence System (NCS) 6000","product":{"name":"IOS","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Intelligent Automation for Cloud","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco DCM Series 9900-Digital Content Manager versions ant\u00e9rieures \u00e0 18.0 (disponible le 31 mars 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Video Surveillance Media Server","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco FireSIGHT System Software versions ant\u00e9rieures \u00e0 6.1 (disponible en juin 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified Communications Manager Session Management Edition (SME)","product":{"name":"Unified Communications Manager Session Management Edition","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Videoscape Policy and Resource Management","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Management Heartbeat Server versions ant\u00e9rieures \u00e0 RMS5.x MR (disponible le 29 juillet 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Standalone rack server CIMC","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cloud Object Store (COS) versions ant\u00e9rieures \u00e0 3.8 (disponible le 9 avril 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Universal Small Cell 7000 Series ex\u00e9cutant la version V3.4.2.x","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Finesse","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Hosted Collaboration Mediation Fulfillment","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco TelePresence Video Communication Server (VCS) versions ant\u00e9rieures \u00e0 8.7.1 (disponible le 22 f\u00e9vrier 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco UCS Central","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco TelePresence Conductor versions ant\u00e9rieures \u00e0 XC4.2 (disponible le 30 mars 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Application and Content Networking System (ACNS) versions ant\u00e9rieures \u00e0 5.5.41 (disponible le 29 f\u00e9vrier 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Digital Media Manager","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Virtual Topology System","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco IP Interoperability and Collaboration System (IPICS)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Unified Communications Deployment Tools","product":{"name":"Unified Communications","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Enterprise Content Delivery System (ECDS) versions ant\u00e9rieures \u00e0 2.6.7 (disponible le 30 avril 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Quantum Virtualized Packet Core","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) version 1.1","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco ASA CX et Cisco Prime Security Manager versions ant\u00e9rieures \u00e0 9.3.4.5 (disponible le 30 mai 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Jabber Guest 10.0(2)","product":{"name":"Jabber","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Intrusion Prevention System Solutions (IPS) versions ant\u00e9rieures \u00e0 7.1(11) Patch 1 (disponible le 31 mars 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco 910 Industrial Router","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Expressway Series versions ant\u00e9rieures \u00e0 8.7.1 (disponible le 22 f\u00e9vrier 2016)","product":{"name":"Expressway Series","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco TelePresence MX Series","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco TelePresence SX Series","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Clean Access Manager versions ant\u00e9rieures \u00e0 4.9.5 (disponible le 19 f\u00e9vrier 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Video Delivery System Recorder (correctif disponible le 30 avril 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Fog Director version 1.0(0)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Universal Small Cell 5000 Series ex\u00e9cutant la version V3.4.2.x","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Video Distribution Suite for Internet Streaming (VDS-IS/CDS-IS)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Service Control Operating System","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Media Experience Engines (MXE)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Application Policy Infrastructure Controller (APIC)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Telepresence Integrator C Series","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco TelePresence EX Series","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Edge 300 Digital Media Player versions ant\u00e9rieures \u00e0 1.6RB4_4 (disponible le 25 f\u00e9vrier 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Intrusion Prevention System Solutions (IPS) versions ant\u00e9rieures \u00e0 7.3(05) Patch 1 (disponible le 30 avril 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified Communications Manager (UCM)","product":{"name":"Unified Communications Manager","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco TelePresence Profile Series","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco 3G Femtocell Wireless versions ant\u00e9rieures \u00e0 SR10MR (disponible le 29 juillet 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco NAC Server versions ant\u00e9rieures \u00e0 4.9.5 (disponible le 19 f\u00e9vrier 2016)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2015-7973","url":"https://www.cve.org/CVERecord?id=CVE-2015-7973"},{"name":"CVE-2015-7976","url":"https://www.cve.org/CVERecord?id=CVE-2015-7976"},{"name":"CVE-2015-8158","url":"https://www.cve.org/CVERecord?id=CVE-2015-8158"},{"name":"CVE-2015-7977","url":"https://www.cve.org/CVERecord?id=CVE-2015-7977"},{"name":"CVE-2016-1305","url":"https://www.cve.org/CVERecord?id=CVE-2016-1305"},{"name":"CVE-2015-8138","url":"https://www.cve.org/CVERecord?id=CVE-2015-8138"},{"name":"CVE-2015-7974","url":"https://www.cve.org/CVERecord?id=CVE-2015-7974"},{"name":"CVE-2015-7975","url":"https://www.cve.org/CVERecord?id=CVE-2015-7975"},{"name":"CVE-2015-7978","url":"https://www.cve.org/CVERecord?id=CVE-2015-7978"},{"name":"CVE-2015-8140","url":"https://www.cve.org/CVERecord?id=CVE-2015-8140"},{"name":"CVE-2015-7979","url":"https://www.cve.org/CVERecord?id=CVE-2015-7979"},{"name":"CVE-2015-8139","url":"https://www.cve.org/CVERecord?id=CVE-2015-8139"},{"name":"CVE-2016-1306","url":"https://www.cve.org/CVERecord?id=CVE-2016-1306"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160201-fd du 01    f\u00e9vrier 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160201-fd"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160201-apic-em du 01    f\u00e9vrier 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160201-apic-em"},{"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160127-ntpd du 27    janvier 2016","url":"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-ntpd"}],"reference":"CERTFR-2016-AVI-045","revisions":[{"description":"version initiale.","revision_date":"2016-02-02T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Injection de code indirecte \u00e0 distance"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits Cisco</span>. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0\nl'int\u00e9grit\u00e9 des donn\u00e9es et une injection de code indirecte \u00e0 distance\n(XSS).\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160201-apic-em du 01 f\u00e9vrier 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160127-ntpd du 27 janvier 2016","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160201-fd du 01 f\u00e9vrier 2016","url":null}]}