{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Prime Collaboration Assurance","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"MediaSense","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Prime Collaboration Provisioning","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco IOS XE versions Fuji 16.7.1 ou Fuji 16.8.1 configur\u00e9es pour utiliser l'authentification AAA","product":{"name":"IOS XE","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Meeting Server (CMS) 2000 ex\u00e9cutant une version logicielle CMS ant\u00e9rieures \u00e0 2.2.13 ou 2.3.4.","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Unified Intelligence Center (UIC)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Emergency Responder","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Hosted Collaboration Mediation Fulfillment","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Prime License Manager","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Unified Communications Manager (UCM)","product":{"name":"Unified Communications Manager","vendor":{"name":"Cisco","scada":false}}},{"description":"Virtualized Voice Browser","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Unified Communications Manager IM and Presence Service (IM&P)","product":{"name":"Unified Communications Manager","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Network Services Orchestrator (NSO) versions 4.1 \u00e0 4.1.6.0, 4.2 \u00e0 4.2.4.0, 4.3 \u00e0 4.3.3.0 et 4.4 \u00e0 4.4.2.0","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SocialMiner","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco AsyncOS avec une version 10.5.1, 10.5.2 ou 11.0.0 du logiciel WSA","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Prime Collaboration Provisioning (PCP) versions 12.2 et ant\u00e9rieures","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco IP Phone series 6800, 7800 et 8800 avec un micorgiciel Multiplatform version ant\u00e9rieure \u00e0 11.1(2)","product":{"name":"IP Phone","vendor":{"name":"Cisco","scada":false}}},{"description":"Unified Contact Center Express (UCCx)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Finesse","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Unity Connection","product":{"name":"Unity Connection","vendor":{"name":"Cisco","scada":false}}},{"description":"Unified Communication Manager Session Management Edition (SME)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2018-0320","url":"https://www.cve.org/CVERecord?id=CVE-2018-0320"},{"name":"CVE-2018-0317","url":"https://www.cve.org/CVERecord?id=CVE-2018-0317"},{"name":"CVE-2018-0274","url":"https://www.cve.org/CVERecord?id=CVE-2018-0274"},{"name":"CVE-2018-0321","url":"https://www.cve.org/CVERecord?id=CVE-2018-0321"},{"name":"CVE-2018-0319","url":"https://www.cve.org/CVERecord?id=CVE-2018-0319"},{"name":"CVE-2017-6779","url":"https://www.cve.org/CVERecord?id=CVE-2017-6779"},{"name":"CVE-2018-0296","url":"https://www.cve.org/CVERecord?id=CVE-2018-0296"},{"name":"CVE-2018-0318","url":"https://www.cve.org/CVERecord?id=CVE-2018-0318"},{"name":"CVE-2018-0263","url":"https://www.cve.org/CVERecord?id=CVE-2018-0263"},{"name":"CVE-2018-0316","url":"https://www.cve.org/CVERecord?id=CVE-2018-0316"},{"name":"CVE-2018-0315","url":"https://www.cve.org/CVERecord?id=CVE-2018-0315"},{"name":"CVE-2018-0322","url":"https://www.cve.org/CVERecord?id=CVE-2018-0322"},{"name":"CVE-2018-0353","url":"https://www.cve.org/CVERecord?id=CVE-2018-0353"}],"links":[],"reference":"CERTFR-2018-AVI-270","revisions":[{"description":"Version initiale","revision_date":"2018-06-07T00:00:00.000000"},{"description":"Version initiale","revision_date":"2018-06-07T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Cisco.\nCertaines d'entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-cms-id du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-cms-id"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-prime-bypass du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-prime-bypass"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-prime-password-recovery du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-prime-password-recovery"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-multiplatform-sip du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-multiplatform-sip"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-diskdos du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-diskdos"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-asaftd du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-asaftd"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-prime-sql du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-prime-sql"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-prime-access du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-prime-access"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-aaa du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-aaa"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-wsa du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-wsa"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-prime-password-reset du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-prime-password-reset"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-nso du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-nso"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20180606-prime-rmi du 6 juin 2018","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-prime-rmi"}]}