{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Spectrum Protect Plus versions 10.1.x ant\u00e9rieures \u00e0 10.1.16.1","product":{"name":"Spectrum","vendor":{"name":"IBM","scada":false}}},{"description":"QRadar SIEM M7 Appliances versions ant\u00e9rieures \u00e0 7.5 sans le microgiciel 4.0.0","product":{"name":"QRadar SIEM","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2022-22950","url":"https://www.cve.org/CVERecord?id=CVE-2022-22950"},{"name":"CVE-2023-1382","url":"https://www.cve.org/CVERecord?id=CVE-2023-1382"},{"name":"CVE-2023-46813","url":"https://www.cve.org/CVERecord?id=CVE-2023-46813"},{"name":"CVE-2023-1838","url":"https://www.cve.org/CVERecord?id=CVE-2023-1838"},{"name":"CVE-2022-22976","url":"https://www.cve.org/CVERecord?id=CVE-2022-22976"},{"name":"CVE-2022-22971","url":"https://www.cve.org/CVERecord?id=CVE-2022-22971"},{"name":"CVE-2021-41079","url":"https://www.cve.org/CVERecord?id=CVE-2021-41079"},{"name":"CVE-2023-51385","url":"https://www.cve.org/CVERecord?id=CVE-2023-51385"},{"name":"CVE-2023-5633","url":"https://www.cve.org/CVERecord?id=CVE-2023-5633"},{"name":"CVE-2022-38457","url":"https://www.cve.org/CVERecord?id=CVE-2022-38457"},{"name":"CVE-2021-42340","url":"https://www.cve.org/CVERecord?id=CVE-2021-42340"},{"name":"CVE-2023-2248","url":"https://www.cve.org/CVERecord?id=CVE-2023-2248"},{"name":"CVE-2022-22978","url":"https://www.cve.org/CVERecord?id=CVE-2022-22978"},{"name":"CVE-2023-6536","url":"https://www.cve.org/CVERecord?id=CVE-2023-6536"},{"name":"CVE-2023-23455","url":"https://www.cve.org/CVERecord?id=CVE-2023-23455"},{"name":"CVE-2024-0646","url":"https://www.cve.org/CVERecord?id=CVE-2024-0646"},{"name":"CVE-2022-22980","url":"https://www.cve.org/CVERecord?id=CVE-2022-22980"},{"name":"CVE-2023-40283","url":"https://www.cve.org/CVERecord?id=CVE-2023-40283"},{"name":"CVE-2023-45862","url":"https://www.cve.org/CVERecord?id=CVE-2023-45862"},{"name":"CVE-2022-45869","url":"https://www.cve.org/CVERecord?id=CVE-2022-45869"},{"name":"CVE-2023-6817","url":"https://www.cve.org/CVERecord?id=CVE-2023-6817"},{"name":"CVE-2023-1074","url":"https://www.cve.org/CVERecord?id=CVE-2023-1074"},{"name":"CVE-2023-29986","url":"https://www.cve.org/CVERecord?id=CVE-2023-29986"},{"name":"CVE-2023-42753","url":"https://www.cve.org/CVERecord?id=CVE-2023-42753"},{"name":"CVE-2023-4921","url":"https://www.cve.org/CVERecord?id=CVE-2023-4921"},{"name":"CVE-2023-33203","url":"https://www.cve.org/CVERecord?id=CVE-2023-33203"},{"name":"CVE-2023-3812","url":"https://www.cve.org/CVERecord?id=CVE-2023-3812"},{"name":"CVE-2021-3923","url":"https://www.cve.org/CVERecord?id=CVE-2021-3923"},{"name":"CVE-2023-48795","url":"https://www.cve.org/CVERecord?id=CVE-2023-48795"},{"name":"CVE-2022-25762","url":"https://www.cve.org/CVERecord?id=CVE-2022-25762"},{"name":"CVE-2023-38409","url":"https://www.cve.org/CVERecord?id=CVE-2023-38409"},{"name":"CVE-2023-4207","url":"https://www.cve.org/CVERecord?id=CVE-2023-4207"},{"name":"CVE-2023-28487","url":"https://www.cve.org/CVERecord?id=CVE-2023-28487"},{"name":"CVE-2024-0443","url":"https://www.cve.org/CVERecord?id=CVE-2024-0443"},{"name":"CVE-2022-3545","url":"https://www.cve.org/CVERecord?id=CVE-2022-3545"},{"name":"CVE-2023-2176","url":"https://www.cve.org/CVERecord?id=CVE-2023-2176"},{"name":"CVE-2023-2162","url":"https://www.cve.org/CVERecord?id=CVE-2023-2162"},{"name":"CVE-2022-36402","url":"https://www.cve.org/CVERecord?id=CVE-2022-36402"},{"name":"CVE-2022-21216","url":"https://www.cve.org/CVERecord?id=CVE-2022-21216"},{"name":"CVE-2023-3772","url":"https://www.cve.org/CVERecord?id=CVE-2023-3772"},{"name":"CVE-2021-22060","url":"https://www.cve.org/CVERecord?id=CVE-2021-22060"},{"name":"CVE-2023-3567","url":"https://www.cve.org/CVERecord?id=CVE-2023-3567"},{"name":"CVE-2023-45871","url":"https://www.cve.org/CVERecord?id=CVE-2023-45871"},{"name":"CVE-2023-1075","url":"https://www.cve.org/CVERecord?id=CVE-2023-1075"},{"name":"CVE-2023-3609","url":"https://www.cve.org/CVERecord?id=CVE-2023-3609"},{"name":"CVE-2023-52071","url":"https://www.cve.org/CVERecord?id=CVE-2023-52071"},{"name":"CVE-2023-26545","url":"https://www.cve.org/CVERecord?id=CVE-2023-26545"},{"name":"CVE-2022-3640","url":"https://www.cve.org/CVERecord?id=CVE-2022-3640"},{"name":"CVE-2023-6535","url":"https://www.cve.org/CVERecord?id=CVE-2023-6535"},{"name":"CVE-2023-2269","url":"https://www.cve.org/CVERecord?id=CVE-2023-2269"},{"name":"CVE-2022-3594","url":"https://www.cve.org/CVERecord?id=CVE-2022-3594"},{"name":"CVE-2024-27277","url":"https://www.cve.org/CVERecord?id=CVE-2024-27277"},{"name":"CVE-2023-47715","url":"https://www.cve.org/CVERecord?id=CVE-2023-47715"},{"name":"CVE-2023-51780","url":"https://www.cve.org/CVERecord?id=CVE-2023-51780"},{"name":"CVE-2022-22970","url":"https://www.cve.org/CVERecord?id=CVE-2022-22970"},{"name":"CVE-2023-4622","url":"https://www.cve.org/CVERecord?id=CVE-2023-4622"},{"name":"CVE-2022-28388","url":"https://www.cve.org/CVERecord?id=CVE-2022-28388"},{"name":"CVE-2023-42465","url":"https://www.cve.org/CVERecord?id=CVE-2023-42465"},{"name":"CVE-2023-6606","url":"https://www.cve.org/CVERecord?id=CVE-2023-6606"},{"name":"CVE-2022-31690","url":"https://www.cve.org/CVERecord?id=CVE-2022-31690"},{"name":"CVE-2023-0597","url":"https://www.cve.org/CVERecord?id=CVE-2023-0597"},{"name":"CVE-2023-4623","url":"https://www.cve.org/CVERecord?id=CVE-2023-4623"},{"name":"CVE-2024-0853","url":"https://www.cve.org/CVERecord?id=CVE-2024-0853"},{"name":"CVE-2023-51042","url":"https://www.cve.org/CVERecord?id=CVE-2023-51042"},{"name":"CVE-2021-22096","url":"https://www.cve.org/CVERecord?id=CVE-2021-22096"},{"name":"CVE-2023-28486","url":"https://www.cve.org/CVERecord?id=CVE-2023-28486"},{"name":"CVE-2022-29885","url":"https://www.cve.org/CVERecord?id=CVE-2022-29885"},{"name":"CVE-2023-5717","url":"https://www.cve.org/CVERecord?id=CVE-2023-5717"},{"name":"CVE-2023-2166","url":"https://www.cve.org/CVERecord?id=CVE-2023-2166"},{"name":"CVE-2022-27772","url":"https://www.cve.org/CVERecord?id=CVE-2022-27772"},{"name":"CVE-2023-1192","url":"https://www.cve.org/CVERecord?id=CVE-2023-1192"},{"name":"CVE-2023-6610","url":"https://www.cve.org/CVERecord?id=CVE-2023-6610"}],"links":[],"reference":"CERTFR-2024-AVI-0240","revisions":[{"description":"Version initiale","revision_date":"2024-03-22T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Ex\u00e9cution de code arbitraire"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">les produits IBM</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer une \u00e9l\u00e9vation de privil\u00e8ges, une\nex\u00e9cution de code arbitraire et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7144944 du 21 mars 2024","url":"https://www.ibm.com/support/pages/node/7144944"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 IBM 7144861 du 20 mars 2024","url":"https://www.ibm.com/support/pages/node/7144861"}]}