{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"WebSphere Service Registry and Repository versions 8.5 sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"WebSphere Application Server versions 8.5.0  sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"IBM QRadar SIEM versions 7.5.0 ant\u00e9rieures \u00e0  7.5.0 UP15 IF04","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"WebSphere Application Server - Liberty versions 17.x \u00e0 26.x sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"DB2 Query Management Facility versions 12.2.0.5 sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Tivoli Composite Application Manager for Applications WebSphere MQ Monitoring Agent versions 7.3.0 Fix Pack 4 sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Security QRadar Log Management AQL Plugin versions 1.x ant\u00e9rieures \u00e0 1.1.6","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Sterling Connect:Direct Web Services versions 6.3.0 ant\u00e9rieures \u00e0  6.3.0.19","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Sterling Connect:Direct Web Services versions 6.4.0 ant\u00e9rieures \u00e0 6.4.0.8","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Sterling B2B Integrator et IBM Sterling File Gateway versions 6.2.1 ant\u00e9rieures \u00e0 6.2.1.2","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"DB2 Query Management Facility versions 13.1.x sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"WebSphere Application Server versions 9.0.0 \u00e0 9.0.5.28 sans les derniers correctifs de s\u00e9curit\u00e9","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}},{"description":"Sterling Connect:Direct File Agent versions 1.4.0.3 \u00e0  1.4.0.5_iFi011 pour AIX, Linux x64, Linux PPC et Windows sans le correctif de s\u00e9curit\u00e9 1.4.0.5_iFix012","product":{"name":"N/A","vendor":{"name":"IBM","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2026-6474","url":"https://www.cve.org/CVERecord?id=CVE-2026-6474"},{"name":"CVE-2026-44289","url":"https://www.cve.org/CVERecord?id=CVE-2026-44289"},{"name":"CVE-2026-6472","url":"https://www.cve.org/CVERecord?id=CVE-2026-6472"},{"name":"CVE-2025-14087","url":"https://www.cve.org/CVERecord?id=CVE-2025-14087"},{"name":"CVE-2025-41234","url":"https://www.cve.org/CVERecord?id=CVE-2025-41234"},{"name":"CVE-2026-6479","url":"https://www.cve.org/CVERecord?id=CVE-2026-6479"},{"name":"CVE-2026-44293","url":"https://www.cve.org/CVERecord?id=CVE-2026-44293"},{"name":"CVE-2026-44290","url":"https://www.cve.org/CVERecord?id=CVE-2026-44290"},{"name":"CVE-2026-40355","url":"https://www.cve.org/CVERecord?id=CVE-2026-40355"},{"name":"CVE-2026-41239","url":"https://www.cve.org/CVERecord?id=CVE-2026-41239"},{"name":"CVE-2026-41305","url":"https://www.cve.org/CVERecord?id=CVE-2026-41305"},{"name":"CVE-2026-33814","url":"https://www.cve.org/CVERecord?id=CVE-2026-33814"},{"name":"CVE-2026-45740","url":"https://www.cve.org/CVERecord?id=CVE-2026-45740"},{"name":"CVE-2026-43284","url":"https://www.cve.org/CVERecord?id=CVE-2026-43284"},{"name":"CVE-2026-39824","url":"https://www.cve.org/CVERecord?id=CVE-2026-39824"},{"name":"CVE-2026-40977","url":"https://www.cve.org/CVERecord?id=CVE-2026-40977"},{"name":"CVE-2026-22013","url":"https://www.cve.org/CVERecord?id=CVE-2026-22013"},{"name":"CVE-2026-32635","url":"https://www.cve.org/CVERecord?id=CVE-2026-32635"},{"name":"CVE-2026-22018","url":"https://www.cve.org/CVERecord?id=CVE-2026-22018"},{"name":"CVE-2026-41988","url":"https://www.cve.org/CVERecord?id=CVE-2026-41988"},{"name":"CVE-2024-7246","url":"https://www.cve.org/CVERecord?id=CVE-2024-7246"},{"name":"CVE-2026-6637","url":"https://www.cve.org/CVERecord?id=CVE-2026-6637"},{"name":"CVE-2026-41242","url":"https://www.cve.org/CVERecord?id=CVE-2026-41242"},{"name":"CVE-2025-41248","url":"https://www.cve.org/CVERecord?id=CVE-2025-41248"},{"name":"CVE-2026-34282","url":"https://www.cve.org/CVERecord?id=CVE-2026-34282"},{"name":"CVE-2026-6473","url":"https://www.cve.org/CVERecord?id=CVE-2026-6473"},{"name":"CVE-2026-39821","url":"https://www.cve.org/CVERecord?id=CVE-2026-39821"},{"name":"CVE-2025-14512","url":"https://www.cve.org/CVERecord?id=CVE-2025-14512"},{"name":"CVE-2026-5758","url":"https://www.cve.org/CVERecord?id=CVE-2026-5758"},{"name":"CVE-2026-27136","url":"https://www.cve.org/CVERecord?id=CVE-2026-27136"},{"name":"CVE-2025-22233","url":"https://www.cve.org/CVERecord?id=CVE-2025-22233"},{"name":"CVE-2024-38820","url":"https://www.cve.org/CVERecord?id=CVE-2024-38820"},{"name":"CVE-2026-23865","url":"https://www.cve.org/CVERecord?id=CVE-2026-23865"},{"name":"CVE-2026-40356","url":"https://www.cve.org/CVERecord?id=CVE-2026-40356"},{"name":"CVE-2026-33671","url":"https://www.cve.org/CVERecord?id=CVE-2026-33671"},{"name":"CVE-2026-5598","url":"https://www.cve.org/CVERecord?id=CVE-2026-5598"},{"name":"CVE-2026-33750","url":"https://www.cve.org/CVERecord?id=CVE-2026-33750"},{"name":"CVE-2026-44288","url":"https://www.cve.org/CVERecord?id=CVE-2026-44288"},{"name":"CVE-2026-8646","url":"https://www.cve.org/CVERecord?id=CVE-2026-8646"},{"name":"CVE-2026-6918","url":"https://www.cve.org/CVERecord?id=CVE-2026-6918"},{"name":"CVE-2025-52999","url":"https://www.cve.org/CVERecord?id=CVE-2025-52999"},{"name":"CVE-2026-6638","url":"https://www.cve.org/CVERecord?id=CVE-2026-6638"},{"name":"CVE-2026-9320","url":"https://www.cve.org/CVERecord?id=CVE-2026-9320"},{"name":"CVE-2026-40975","url":"https://www.cve.org/CVERecord?id=CVE-2026-40975"},{"name":"CVE-2026-41240","url":"https://www.cve.org/CVERecord?id=CVE-2026-41240"},{"name":"CVE-2026-42506","url":"https://www.cve.org/CVERecord?id=CVE-2026-42506"},{"name":"CVE-2026-27903","url":"https://www.cve.org/CVERecord?id=CVE-2026-27903"},{"name":"CVE-2025-41235","url":"https://www.cve.org/CVERecord?id=CVE-2025-41235"},{"name":"CVE-2026-46300","url":"https://www.cve.org/CVERecord?id=CVE-2026-46300"},{"name":"CVE-2026-25680","url":"https://www.cve.org/CVERecord?id=CVE-2026-25680"},{"name":"CVE-2026-6478","url":"https://www.cve.org/CVERecord?id=CVE-2026-6478"},{"name":"CVE-2026-10845","url":"https://www.cve.org/CVERecord?id=CVE-2026-10845"},{"name":"CVE-2026-6475","url":"https://www.cve.org/CVERecord?id=CVE-2026-6475"},{"name":"CVE-2026-22016","url":"https://www.cve.org/CVERecord?id=CVE-2026-22016"},{"name":"CVE-2026-22021","url":"https://www.cve.org/CVERecord?id=CVE-2026-22021"},{"name":"CVE-2026-22007","url":"https://www.cve.org/CVERecord?id=CVE-2026-22007"},{"name":"CVE-2026-34268","url":"https://www.cve.org/CVERecord?id=CVE-2026-34268"},{"name":"CVE-2026-44291","url":"https://www.cve.org/CVERecord?id=CVE-2026-44291"},{"name":"CVE-2026-42583","url":"https://www.cve.org/CVERecord?id=CVE-2026-42583"},{"name":"CVE-2026-41680","url":"https://www.cve.org/CVERecord?id=CVE-2026-41680"},{"name":"CVE-2026-44292","url":"https://www.cve.org/CVERecord?id=CVE-2026-44292"},{"name":"CVE-2026-29181","url":"https://www.cve.org/CVERecord?id=CVE-2026-29181"},{"name":"CVE-2026-6477","url":"https://www.cve.org/CVERecord?id=CVE-2026-6477"},{"name":"CVE-2026-42502","url":"https://www.cve.org/CVERecord?id=CVE-2026-42502"},{"name":"CVE-2026-33672","url":"https://www.cve.org/CVERecord?id=CVE-2026-33672"},{"name":"CVE-2026-8723","url":"https://www.cve.org/CVERecord?id=CVE-2026-8723"},{"name":"CVE-2026-25681","url":"https://www.cve.org/CVERecord?id=CVE-2026-25681"},{"name":"CVE-2026-40973","url":"https://www.cve.org/CVERecord?id=CVE-2026-40973"},{"name":"CVE-2026-46333","url":"https://www.cve.org/CVERecord?id=CVE-2026-46333"},{"name":"CVE-2026-41035","url":"https://www.cve.org/CVERecord?id=CVE-2026-41035"},{"name":"CVE-2025-22235","url":"https://www.cve.org/CVERecord?id=CVE-2025-22235"},{"name":"CVE-2026-9330","url":"https://www.cve.org/CVERecord?id=CVE-2026-9330"},{"name":"CVE-2025-41249","url":"https://www.cve.org/CVERecord?id=CVE-2025-41249"},{"name":"CVE-2026-9311","url":"https://www.cve.org/CVERecord?id=CVE-2026-9311"},{"name":"CVE-2026-26996","url":"https://www.cve.org/CVERecord?id=CVE-2026-26996"},{"name":"CVE-2025-64756","url":"https://www.cve.org/CVERecord?id=CVE-2025-64756"},{"name":"CVE-2026-41238","url":"https://www.cve.org/CVERecord?id=CVE-2026-41238"},{"name":"CVE-2026-9071","url":"https://www.cve.org/CVERecord?id=CVE-2026-9071"},{"name":"CVE-2026-9006","url":"https://www.cve.org/CVERecord?id=CVE-2026-9006"},{"name":"CVE-2025-41242","url":"https://www.cve.org/CVERecord?id=CVE-2025-41242"},{"name":"CVE-2026-44294","url":"https://www.cve.org/CVERecord?id=CVE-2026-44294"},{"name":"CVE-2026-22008","url":"https://www.cve.org/CVERecord?id=CVE-2026-22008"},{"name":"CVE-2025-14813","url":"https://www.cve.org/CVERecord?id=CVE-2025-14813"},{"name":"CVE-2026-41907","url":"https://www.cve.org/CVERecord?id=CVE-2026-41907"},{"name":"CVE-2026-27904","url":"https://www.cve.org/CVERecord?id=CVE-2026-27904"}],"links":[],"reference":"CERTFR-2026-AVI-0788","revisions":[{"description":"Version initiale","revision_date":"2026-06-19T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de code indirecte \u00e0 distance (XSS)"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Injection SQL (SQLi)"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM","vendor_advisories":[{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276427","url":"https://www.ibm.com/support/pages/node/7276427"},{"published_at":"2026-06-17","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276831","url":"https://www.ibm.com/support/pages/node/7276831"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276430","url":"https://www.ibm.com/support/pages/node/7276430"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276432","url":"https://www.ibm.com/support/pages/node/7276432"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276433","url":"https://www.ibm.com/support/pages/node/7276433"},{"published_at":"2026-06-16","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276620","url":"https://www.ibm.com/support/pages/node/7276620"},{"published_at":"2026-06-16","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276616","url":"https://www.ibm.com/support/pages/node/7276616"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276425","url":"https://www.ibm.com/support/pages/node/7276425"},{"published_at":"2026-06-16","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276597","url":"https://www.ibm.com/support/pages/node/7276597"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276428","url":"https://www.ibm.com/support/pages/node/7276428"},{"published_at":"2026-06-17","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276761","url":"https://www.ibm.com/support/pages/node/7276761"},{"published_at":"2026-06-17","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276816","url":"https://www.ibm.com/support/pages/node/7276816"},{"published_at":"2026-06-16","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276589","url":"https://www.ibm.com/support/pages/node/7276589"},{"published_at":"2026-06-17","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276832","url":"https://www.ibm.com/support/pages/node/7276832"},{"published_at":"2026-06-12","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276187","url":"https://www.ibm.com/support/pages/node/7276187"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276426","url":"https://www.ibm.com/support/pages/node/7276426"},{"published_at":"2026-06-16","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276579","url":"https://www.ibm.com/support/pages/node/7276579"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276303","url":"https://www.ibm.com/support/pages/node/7276303"},{"published_at":"2026-06-12","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276193","url":"https://www.ibm.com/support/pages/node/7276193"},{"published_at":"2026-06-18","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276939","url":"https://www.ibm.com/support/pages/node/7276939"},{"published_at":"2026-06-16","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276600","url":"https://www.ibm.com/support/pages/node/7276600"},{"published_at":"2026-06-12","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276189","url":"https://www.ibm.com/support/pages/node/7276189"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276429","url":"https://www.ibm.com/support/pages/node/7276429"},{"published_at":"2026-06-15","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276392","url":"https://www.ibm.com/support/pages/node/7276392"},{"published_at":"2026-06-12","title":"Bulletin de s\u00e9curit\u00e9 IBM 7276185","url":"https://www.ibm.com/support/pages/node/7276185"}]}