{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"RUGGEDCOM ROS RSG920P versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Parasolid V33.1 versions 33.1.x ant\u00e9rieures \u00e0 33.1.263","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG2300 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Parasolid V33.1 versions 34.0.x ant\u00e9rieures \u00e0 34.0.252","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RS416v2 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG908C versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG2288 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RST2228P versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RST916C versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RS900 (32M) versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Mendix SAML Module versions 3.3.x ant\u00e9rieures \u00e0 3.3.1","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RS900G (32M) versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"SINEC INS versions ant\u00e9rieures \u00e0 1.0 SP2","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"CoreShield One-Way Gateway (OWG) Software versions ant\u00e9rieures \u00e0 2.2","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RMC8388 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG2100 (32M) versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Mendix SAML Module versions 2.3.x ant\u00e9rieures \u00e0 2.3.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Simcenter Femap V2022.2 versions ant\u00e9rieures \u00e0 V2022.2.2","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG2300P versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RS416Pv2 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RST916P versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Simcenter Femap V2022.1 versions ant\u00e9rieures \u00e0 V2022.1.3","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG909R versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG907R versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RST2228 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG2488 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Mendix SAML Module versions 1.17.x ant\u00e9rieures \u00e0 1.17.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSL910 versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"RUGGEDCOM ROS RSG910C versions ant\u00e9rieures \u00e0 5.6.0","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Parasolid V35.0 versions 35.0.x ant\u00e9rieures \u00e0 35.0.164","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}},{"description":"Parasolid V33.1 versions 34.1.x ant\u00e9rieures \u00e0 34.1.242","product":{"name":"N/A","vendor":{"name":"Siemens","scada":true}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2016-0701","url":"https://www.cve.org/CVERecord?id=CVE-2016-0701"},{"name":"CVE-2021-25220","url":"https://www.cve.org/CVERecord?id=CVE-2021-25220"},{"name":"CVE-2022-39144","url":"https://www.cve.org/CVERecord?id=CVE-2022-39144"},{"name":"CVE-2022-39145","url":"https://www.cve.org/CVERecord?id=CVE-2022-39145"},{"name":"CVE-2022-39137","url":"https://www.cve.org/CVERecord?id=CVE-2022-39137"},{"name":"CVE-2022-39155","url":"https://www.cve.org/CVERecord?id=CVE-2022-39155"},{"name":"CVE-2022-39146","url":"https://www.cve.org/CVERecord?id=CVE-2022-39146"},{"name":"CVE-2022-39152","url":"https://www.cve.org/CVERecord?id=CVE-2022-39152"},{"name":"CVE-2020-28168","url":"https://www.cve.org/CVERecord?id=CVE-2020-28168"},{"name":"CVE-2021-23337","url":"https://www.cve.org/CVERecord?id=CVE-2021-23337"},{"name":"CVE-2022-0155","url":"https://www.cve.org/CVERecord?id=CVE-2022-0155"},{"name":"CVE-2021-4160","url":"https://www.cve.org/CVERecord?id=CVE-2021-4160"},{"name":"CVE-2022-39143","url":"https://www.cve.org/CVERecord?id=CVE-2022-39143"},{"name":"CVE-2022-39140","url":"https://www.cve.org/CVERecord?id=CVE-2022-39140"},{"name":"CVE-2022-39158","url":"https://www.cve.org/CVERecord?id=CVE-2022-39158"},{"name":"CVE-2022-39153","url":"https://www.cve.org/CVERecord?id=CVE-2022-39153"},{"name":"CVE-2022-39156","url":"https://www.cve.org/CVERecord?id=CVE-2022-39156"},{"name":"CVE-2020-7793","url":"https://www.cve.org/CVERecord?id=CVE-2020-7793"},{"name":"CVE-2021-23839","url":"https://www.cve.org/CVERecord?id=CVE-2021-23839"},{"name":"CVE-2022-38466","url":"https://www.cve.org/CVERecord?id=CVE-2022-38466"},{"name":"CVE-2022-39154","url":"https://www.cve.org/CVERecord?id=CVE-2022-39154"},{"name":"CVE-2020-28500","url":"https://www.cve.org/CVERecord?id=CVE-2020-28500"},{"name":"CVE-2022-39147","url":"https://www.cve.org/CVERecord?id=CVE-2022-39147"},{"name":"CVE-2022-37011","url":"https://www.cve.org/CVERecord?id=CVE-2022-37011"},{"name":"CVE-2022-0235","url":"https://www.cve.org/CVERecord?id=CVE-2022-0235"},{"name":"CVE-2022-39138","url":"https://www.cve.org/CVERecord?id=CVE-2022-39138"},{"name":"CVE-2022-39141","url":"https://www.cve.org/CVERecord?id=CVE-2022-39141"},{"name":"CVE-2022-39139","url":"https://www.cve.org/CVERecord?id=CVE-2022-39139"},{"name":"CVE-2020-12762","url":"https://www.cve.org/CVERecord?id=CVE-2020-12762"},{"name":"CVE-2022-39148","url":"https://www.cve.org/CVERecord?id=CVE-2022-39148"},{"name":"CVE-2021-23841","url":"https://www.cve.org/CVERecord?id=CVE-2021-23841"},{"name":"CVE-2022-39142","url":"https://www.cve.org/CVERecord?id=CVE-2022-39142"},{"name":"CVE-2022-39149","url":"https://www.cve.org/CVERecord?id=CVE-2022-39149"},{"name":"CVE-2022-39151","url":"https://www.cve.org/CVERecord?id=CVE-2022-39151"},{"name":"CVE-2021-25217","url":"https://www.cve.org/CVERecord?id=CVE-2021-25217"},{"name":"CVE-2022-0396","url":"https://www.cve.org/CVERecord?id=CVE-2022-0396"},{"name":"CVE-2021-3749","url":"https://www.cve.org/CVERecord?id=CVE-2021-3749"},{"name":"CVE-2022-39150","url":"https://www.cve.org/CVERecord?id=CVE-2022-39150"}],"links":[],"reference":"CERTFR-2022-AVI-814","revisions":[{"description":"Version initiale","revision_date":"2022-09-13T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSIEMENS. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits SIEMENS","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Siemens ssa-589975 du 13 septembre 2022","url":"https://cert-portal.siemens.com/productcert/html/ssa-589975.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Siemens ssa-638652 du 13 septembre 2022","url":"https://cert-portal.siemens.com/productcert/html/ssa-638652.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Siemens ssa-459643 du 13 septembre 2022","url":"https://cert-portal.siemens.com/productcert/html/ssa-459643.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Siemens ssa-518824 du 13 septembre 2022","url":"https://cert-portal.siemens.com/productcert/html/ssa-518824.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Siemens ssa-637483 du 13 septembre 2022","url":"https://cert-portal.siemens.com/productcert/html/ssa-637483.html"}]}