{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Cisco SD-WAN vEdge Cloud Routers versions ant\u00e9rieures \u00e0 20.4.1 ou 20.5.1","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco WAP125 Wireless-AC Dual Band Desktop Access Point with PoE versions ant\u00e9rieures \u00e0 1.0.4.3","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco WAP150 Wireless-AC/N Dual Radio Access Point with PoE versions ant\u00e9rieures \u00e0 1.1.3.2","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco WAP351 Wireless-N Dual Radio Access Point with 5-Port Switch1 toutes versions (produit en fin de vie, ne recevra pas de correctif)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco WAP131 Wireless-N Dual Radio Access Point with PoE 1 toutes versions (produit en fin de vie, ne recevra pas de correctif)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco WAP581 Wireless-AC Dual Radio Wave 2 Access Point with 2.5GbE LAN versions ant\u00e9rieures \u00e0 1.0.4.4","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco AnyConnect Secure Mobility Client pour Windows versions ant\u00e9rieures \u00e0 4.10.00093","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Enterprise NFV Infrastructure Software (NFVIS) versions ant\u00e9rieures \u00e0 4.5.1","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco HyperFlex HX Software versions ant\u00e9rieures \u00e0 4.0(2e) ou 4.5(1b) 4.5(2a)","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified Communications Manager IM & Presence Service versions ant\u00e9rieures \u00e0 11.5(1)SU9","product":{"name":"Unified Communications Manager","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco SD-WAN vSmart Controller Software versions ant\u00e9rieures \u00e0 20.4.1 ou 20.5.1","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco SD-WAN vEdge Routers versions ant\u00e9rieures \u00e0 20.4.1 ou 20.5.1","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco SD-WAN vManage Software versions ant\u00e9rieures \u00e0 20.4.1 ou 20.5.1","product":{"name":"SD-WAN vManage","vendor":{"name":"Cisco","scada":false}}},{"description":"IOS XE SD-WAN Software toutes versions","product":{"name":"IOS XE","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco Unified Communications Manager IM & Presence Service versions 12.x ant\u00e9rieures \u00e0 12.5(1)SU4","product":{"name":"Unified Communications Manager","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco SD-WAN vBond Orchestrator Software versions ant\u00e9rieures \u00e0 20.4.1 ou 20.5.1","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}},{"description":"Cisco WAP361 Wireless-AC/N Dual Radio Wall Plate Access Point with PoE versions ant\u00e9rieures \u00e0 1.1.3.2","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2021-1430","url":"https://www.cve.org/CVERecord?id=CVE-2021-1430"},{"name":"CVE-2021-1428","url":"https://www.cve.org/CVERecord?id=CVE-2021-1428"},{"name":"CVE-2021-1275","url":"https://www.cve.org/CVERecord?id=CVE-2021-1275"},{"name":"CVE-2021-1468","url":"https://www.cve.org/CVERecord?id=CVE-2021-1468"},{"name":"CVE-2021-1365","url":"https://www.cve.org/CVERecord?id=CVE-2021-1365"},{"name":"CVE-2021-1497","url":"https://www.cve.org/CVERecord?id=CVE-2021-1497"},{"name":"CVE-2021-1426","url":"https://www.cve.org/CVERecord?id=CVE-2021-1426"},{"name":"CVE-2021-1510","url":"https://www.cve.org/CVERecord?id=CVE-2021-1510"},{"name":"CVE-2021-1508","url":"https://www.cve.org/CVERecord?id=CVE-2021-1508"},{"name":"CVE-2021-1513","url":"https://www.cve.org/CVERecord?id=CVE-2021-1513"},{"name":"CVE-2021-1401","url":"https://www.cve.org/CVERecord?id=CVE-2021-1401"},{"name":"CVE-2021-1429","url":"https://www.cve.org/CVERecord?id=CVE-2021-1429"},{"name":"CVE-2021-1505","url":"https://www.cve.org/CVERecord?id=CVE-2021-1505"},{"name":"CVE-2021-1363","url":"https://www.cve.org/CVERecord?id=CVE-2021-1363"},{"name":"CVE-2021-1509","url":"https://www.cve.org/CVERecord?id=CVE-2021-1509"},{"name":"CVE-2021-1498","url":"https://www.cve.org/CVERecord?id=CVE-2021-1498"},{"name":"CVE-2021-1427","url":"https://www.cve.org/CVERecord?id=CVE-2021-1427"},{"name":"CVE-2021-1421","url":"https://www.cve.org/CVERecord?id=CVE-2021-1421"},{"name":"CVE-2021-1284","url":"https://www.cve.org/CVERecord?id=CVE-2021-1284"},{"name":"CVE-2021-1511","url":"https://www.cve.org/CVERecord?id=CVE-2021-1511"},{"name":"CVE-2021-1506","url":"https://www.cve.org/CVERecord?id=CVE-2021-1506"},{"name":"CVE-2021-1400","url":"https://www.cve.org/CVERecord?id=CVE-2021-1400"},{"name":"CVE-2021-1496","url":"https://www.cve.org/CVERecord?id=CVE-2021-1496"}],"links":[],"reference":"CERTFR-2021-AVI-350","revisions":[{"description":"Version initiale","revision_date":"2021-05-06T00:00:00.000000"},{"description":"Correction de la version 4.5 non vuln\u00e9rable d'HyperFlex HX.","revision_date":"2021-06-15T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Cisco.\nCertaines d'entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net un contournement de la politique de s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-anyconnect-code-exec-jR3tWTA6 du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-code-exec-jR3tWTA6"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-sdw-auth-bypass-65aYqcS2 du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-auth-bypass-65aYqcS2"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-sb-wap-multi-ZAfKGXhF du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-wap-multi-ZAfKGXhF"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-sd-wan-vmanage-4TbynnhZ du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sd-wan-vmanage-4TbynnhZ"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-sdwan-dos-Ckn5cVqW du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-dos-Ckn5cVqW"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-imp-inj-ereCOKjR du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-imp-inj-ereCOKjR"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-sdwan-buffover-MWGucjtO du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-buffover-MWGucjtO"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-hyperflex-rce-TjjNrkpR du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-hyperflex-rce-TjjNrkpR"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-nfvis-cmdinj-DkFjqg2j du 05 mai 2021","url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-nfvis-cmdinj-DkFjqg2j"}]}