{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"SD-WAN vEdge 20.1.x versions ant\u00e9rieures \u00e0 20.1.12","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vBond 18.4.x versions ant\u00e9rieures \u00e0 18.4.5","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vManage toutes versions ant\u00e9rieures \u00e0 19.2.3","product":{"name":"SD-WAN vManage","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vManage 20.1.x versions ant\u00e9rieures \u00e0 20.1.1.1","product":{"name":"SD-WAN vManage","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vEdge version 18.3 et toutes versions ant\u00e9rieures","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vBond 18.3.x versions ant\u00e9rieures \u00e0 18.3.6","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vBond 20.1.x versions ant\u00e9rieures \u00e0 20.1.12","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vSmart 18.4.x versions ant\u00e9rieures \u00e0 18.4.5","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vSmart toutes versions ant\u00e9rieures \u00e0 18.3","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vManage 19.3","product":{"name":"SD-WAN vManage","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vEdge 19.2.x versions ant\u00e9rieures \u00e0 19.2.3","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vEdge 18.4.x versions ant\u00e9rieures \u00e0 18.4.5","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vSmart 18.3.x versions ant\u00e9rieures \u00e0 18.3.6","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vBond 19.2.x versions ant\u00e9rieures \u00e0 19.2.3","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vSmart 20.1.x versions ant\u00e9rieures \u00e0 20.1.12","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vBond toutes versions ant\u00e9rieures \u00e0 18.3","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"SD-WAN vSmart 19.2.x versions ant\u00e9rieures \u00e0 19.2.3","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2020-3381","url":"https://www.cve.org/CVERecord?id=CVE-2020-3381"},{"name":"CVE-2020-3388","url":"https://www.cve.org/CVERecord?id=CVE-2020-3388"},{"name":"CVE-2020-3351","url":"https://www.cve.org/CVERecord?id=CVE-2020-3351"},{"name":"CVE-2020-3387","url":"https://www.cve.org/CVERecord?id=CVE-2020-3387"},{"name":"CVE-2020-3385","url":"https://www.cve.org/CVERecord?id=CVE-2020-3385"},{"name":"CVE-2020-3180","url":"https://www.cve.org/CVERecord?id=CVE-2020-3180"},{"name":"CVE-2020-3369","url":"https://www.cve.org/CVERecord?id=CVE-2020-3369"}],"links":[],"reference":"CERTFR-2020-AVI-443","revisions":[{"description":"Version initiale","revision_date":"2020-07-15T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans certains produits\nSD-WAN de Cisco. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de\nservice \u00e0 distance, un contournement de la politique de s\u00e9curit\u00e9 et une\n\u00e9l\u00e9vation de privil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Cisco SD-WAN","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-fpdos-hORBfd9f du 15 juillet 2020","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fpdos-hORBfd9f"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-vmanrce-4jtWT28P du 15 juillet 2020","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmanrce-4jtWT28P"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-clibypvman-sKcLf2L du 15 juillet 2020","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-clibypvman-sKcLf2L"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-vedgfpdos-PkqQrnwV du 15 juillet 2020","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vedgfpdos-PkqQrnwV"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-vmdirtrav-eFdAxsJg du 15 juillet 2020","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vmdirtrav-eFdAxsJg"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-sdw-dos-KWOdyHnB du 15 juillet 2020","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-dos-KWOdyHnB"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-sdscred-HfWWfqBj du 15 juillet 2020","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdscred-HfWWfqBj"}]}