Refine your search
3 vulnerabilities found for Management Center by Broadcom
CERTFR-2024-AVI-0942
Vulnerability from certfr_avis
Une vulnérabilité a été découverte dans les produits Broadcom. Elle permet à un attaquant de provoquer un contournement de la politique de sécurité.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Broadcom | Management Center - VA | Management Center - VA versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S500 | SG-S500 versions antérieures à 7.4.7.1 | ||
| Broadcom | SSL Visibility Appliance Software | SSL Visibility Appliance Software versions antérieures à 7.4.7.1 | ||
| Broadcom | SSP-S410 | SSP-S410 versions antérieures à 7.4.7.1 | ||
| Broadcom | SV-3800 | SV-3800 versions antérieures à 7.4.7.1 | ||
| Broadcom | ProxySG Software - SGOS | ProxySG Software - SGOS versions antérieures à 7.3.23.1 | ||
| Broadcom | CAS-S400 | CAS-S400 versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S400-RP | SG-S400-RP versions antérieures à 7.3.23.1 | ||
| Broadcom | SV-S550 | SV-550 versions antérieures à 7.4.7.1 | ||
| Broadcom | SG-S200-40 | SG-S200-40 versions antérieures à 7.4.7.1 | ||
| Broadcom | ProxySG Software - SGOS | ProxySG Software - SGOS versions antérieures à 7.4.7.1 | ||
| Broadcom | ASG-S500 | ASG-S500 versions antérieures à 7.3.23.1 | ||
| Broadcom | ASG-S200 | ASG-S200 versions antérieures à 7.3.23.1 | ||
| Broadcom | Content Analysis Software | Content Analysis Software versions antérieures à 7.4.7.1 | ||
| Broadcom | ISG Content Analysis | ISG Content Analysis versions antérieures à 7.4.7.1 | ||
| Broadcom | Management Center | Management Center versions antérieures à 7.4.7.1 | ||
| Broadcom | SV-2800 | SV-2800 versions antérieures à 7.3.23.1 | ||
| Broadcom | Reporter | Reporter versions antérieures à 7.4.7.1 | ||
| Broadcom | ASG-S500 | ASG-S500 versions antérieures à 7.4.7.1 | ||
| Broadcom | SV-1800 | SV-1800 versions antérieures à 7.4.7.1 | ||
| Broadcom | SV-3800 | SV-3800 versions antérieures à 7.3.23.1 | ||
| Broadcom | ASG-S400 | ASG-S400 versions antérieures à 7.4.7.1 | ||
| Broadcom | SV-1800 | SV-1800 versions antérieures à 7.3.23.1 | ||
| Broadcom | ISG Proxy | ISG Proxy versions antérieures à 7.3.23.1 | ||
| Broadcom | CAS-S500 | CAS-S500 versions antérieures à 7.3.23.1 | ||
| Broadcom | SV-800 | SV-800 versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S500-RP | SG-S500-RP versions antérieures à 7.3.23.1 | ||
| Broadcom | ISG Proxy | ISG Proxy versions antérieures à 7.4.7.1 | ||
| Broadcom | ISG Content Analysis | ISG Content Analysis versions antérieures à 7.3.23.1 | ||
| Broadcom | SSP-S410 PLATFORM | SSP-S410 PLATFORM versions antérieures à 7.4.7.1 | ||
| Broadcom | SV-S550 | SV-550 versions antérieures à 7.3.23.1 | ||
| Broadcom | SV-2800 | SV-2800 versions antérieures à 7.4.7.1 | ||
| Broadcom | SSP | SSP versions antérieures à 7.3.23.1 | ||
| Broadcom | Reporter-VA | Reporter-VA versions antérieures à 7.4.7.1 | ||
| Broadcom | Management Center | Management Center versions antérieures à 7.3.23.1 | ||
| Broadcom | CAS-S200 | CAS-S200 versions antérieures à 7.3.23.1 | ||
| Broadcom | SSP-S210 PLATFORM | SSP-S210 PLATFORM versions antérieures à 7.3.23.1 | ||
| Broadcom | CAS-S200 | CAS-S200 versions antérieures à 7.4.7.1 | ||
| Broadcom | CAS-S400 | CAS-S400 versions antérieures à 7.4.7.1 | ||
| Broadcom | Management Center - VA | Management Center - VA versions antérieures à 7.4.7.1 | ||
| Broadcom | SG-S200-RP | SG-S200-RP versions antérieures à 7.4.7.1 | ||
| Broadcom | Reporter-VA | Reporter-VA versions antérieures à 7.3.23.1 | ||
| Broadcom | SSP-S410 | SSP-S410 versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S400-RP | SG-S400-RP versions antérieures à 7.4.7.1 | ||
| Broadcom | SSP-S210 PLATFORM | SSP-S210 PLATFORM versions antérieures à 7.4.7.1 | ||
| Broadcom | Reporter-S500 | Reporter-S500 versions antérieures à 7.4.7.1 | ||
| Broadcom | ASG-S400 | ASG-S400 versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S200 | SG-S200 versions antérieures à 7.4.7.1 | ||
| Broadcom | ASG-S200 | ASG-S200 versions antérieures à 7.4.7.1 | ||
| Broadcom | MC-S400-20 | MC-S400-20 versions antérieures à 7.4.7.1 | ||
| Broadcom | SG-S200-40 | SG-S200-40 versions antérieures à 7.3.23.1 | ||
| Broadcom | SSP | SSP versions antérieures à 7.4.7.1 | ||
| Broadcom | SG-S500-RP | SG-S500-RP versions antérieures à 7.4.7.1 | ||
| Broadcom | SV-800 | SV-800 versions antérieures à 7.4.7.1 | ||
| Broadcom | Reporter-S500 | Reporter-S500 versions antérieures à 7.3.23.1 | ||
| Broadcom | SSL Visibility Appliance Software | SSL Visibility Appliance Software versions antérieures à 7.3.23.1 | ||
| Broadcom | CAS-S200-A1 | CAS-S200-A1 versions antérieures à 7.4.7.1 | ||
| Broadcom | Reporter | Reporter versions antérieures à 7.3.23.1 | ||
| Broadcom | CAS-S500 | CAS-S500 versions antérieures à 7.4.7.1 | ||
| Broadcom | SSP-S410 PLATFORM | SSP-S410 PLATFORM versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S400 | SG-S400 versions antérieures à 7.4.7.1 | ||
| Broadcom | CAS-S200-A1 | CAS-S200-A1 versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S500 | SG-S500 versions antérieures à 7.3.23.1 | ||
| Broadcom | MC-S400-20 | MC-S400-20 versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S200 | SG-S200 versions antérieures à 7.3.23.1 | ||
| Broadcom | Content Analysis Software | Content Analysis Software versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S200-RP | SG-S200-RP versions antérieures à 7.3.23.1 | ||
| Broadcom | SG-S400 | SG-S400 versions antérieures à 7.3.23.1 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Management Center - VA versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "Management Center - VA",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S500 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SG-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSL Visibility Appliance Software versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SSL Visibility Appliance Software",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP-S410 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SSP-S410",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-3800 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SV-3800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ProxySG Software - SGOS versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "ProxySG Software - SGOS",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S400 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "CAS-S400",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S400-RP versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SG-S400-RP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-550 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SV-S550",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S200-40 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SG-S200-40",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ProxySG Software - SGOS versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "ProxySG Software - SGOS",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ASG-S500 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "ASG-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ASG-S200 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "ASG-S200",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Content Analysis Software versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "Content Analysis Software",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ISG Content Analysis versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "ISG Content Analysis",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Management Center versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "Management Center",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-2800 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SV-2800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Reporter versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "Reporter",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ASG-S500 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "ASG-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-1800 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SV-1800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-3800 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SV-3800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ASG-S400 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "ASG-S400",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-1800 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SV-1800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ISG Proxy versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "ISG Proxy",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S500 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "CAS-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-800 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SV-800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S500-RP versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SG-S500-RP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ISG Proxy versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "ISG Proxy",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ISG Content Analysis versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "ISG Content Analysis",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP-S410 PLATFORM versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SSP-S410 PLATFORM",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-550 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SV-S550",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-2800 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SV-2800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SSP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Reporter-VA versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "Reporter-VA",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Management Center versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "Management Center",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S200 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "CAS-S200",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP-S210 PLATFORM versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SSP-S210 PLATFORM",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S200 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "CAS-S200",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S400 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "CAS-S400",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Management Center - VA versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "Management Center - VA",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S200-RP versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SG-S200-RP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Reporter-VA versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "Reporter-VA",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP-S410 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SSP-S410",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S400-RP versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SG-S400-RP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP-S210 PLATFORM versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SSP-S210 PLATFORM",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Reporter-S500 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "Reporter-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ASG-S400 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "ASG-S400",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S200 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SG-S200",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "ASG-S200 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "ASG-S200",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "MC-S400-20 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "MC-S400-20",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S200-40 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SG-S200-40",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SSP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S500-RP versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SG-S500-RP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SV-800 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SV-800",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Reporter-S500 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "Reporter-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSL Visibility Appliance Software versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SSL Visibility Appliance Software",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S200-A1 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "CAS-S200-A1",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Reporter versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "Reporter",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S500 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "CAS-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSP-S410 PLATFORM versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SSP-S410 PLATFORM",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S400 versions ant\u00e9rieures \u00e0 7.4.7.1",
"product": {
"name": "SG-S400",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS-S200-A1 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "CAS-S200-A1",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S500 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SG-S500",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "MC-S400-20 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "MC-S400-20",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S200 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SG-S200",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Content Analysis Software versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "Content Analysis Software",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S200-RP versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SG-S200-RP",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SG-S400 versions ant\u00e9rieures \u00e0 7.3.23.1",
"product": {
"name": "SG-S400",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-3596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3596"
}
],
"initial_release_date": "2024-11-04T00:00:00",
"last_revision_date": "2024-11-04T00:00:00",
"links": [],
"reference": "CERTFR-2024-AVI-0942",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2024-11-04T00:00:00.000000"
}
],
"risks": [
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans les produits Broadcom. Elle permet \u00e0 un attaquant de provoquer un contournement de la politique de s\u00e9curit\u00e9.",
"title": "Vuln\u00e9rabilit\u00e9 dans les produits Broadcom",
"vendor_advisories": [
{
"published_at": "2024-11-01",
"title": "Bulletin de s\u00e9curit\u00e9 Broadcom 25157",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25157"
}
]
}
CERTFR-2014-AVI-404
Vulnerability from certfr_avis
De multiples vulnérabilités ont été corrigées dans Blue Coat. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Broadcom | N/A | MAA 1.1.x et 4.1.x | ||
| Broadcom | N/A | Director 6.x et 5.x | ||
| Broadcom | Management Center | Management Center 1.1 et 1.2 | ||
| Broadcom | Reporter | Reporter's ISO 9.4 | ||
| Broadcom | N/A | SA 7.1, 7.0, et 6.x | ||
| Broadcom | N/A | CAS 1.x | ||
| Broadcom | N/A | XOS | ||
| Broadcom | N/A | S-Series | ||
| Broadcom | N/A | MAG2 | ||
| Broadcom | N/A | SSL Visibility |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "MAA 1.1.x et 4.1.x",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Director 6.x et 5.x",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Management Center 1.1 et 1.2",
"product": {
"name": "Management Center",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "Reporter\u0027s ISO 9.4",
"product": {
"name": "Reporter",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SA 7.1, 7.0, et 6.x",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "CAS 1.x",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "XOS",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "S-Series",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "MAG2",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "SSL Visibility",
"product": {
"name": "N/A",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2014-7169",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-7169"
},
{
"name": "CVE-2014-6271",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6271"
}
],
"initial_release_date": "2014-09-30T00:00:00",
"last_revision_date": "2014-09-30T00:00:00",
"links": [],
"reference": "CERTFR-2014-AVI-404",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2014-09-30T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eBlue Coat\u003c/span\u003e. Elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Blue Coat",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Blue Coat SA82 du 25 septembre 2014",
"url": "https://kb.bluecoat.com/index?page=content\u0026id=SA82"
}
]
}
CERTA-2011-AVI-288
Vulnerability from certfr_avis
De multiples vulnérabilités ont été corrigées dans HP Intelligent Management Center, qui permettent à un attaquant d'exécuter du code arbitraire à distance.
Description
De multiples vulnérabilités ont été corrigées dans HP Intelligent Management Center :
- plusieurs vulnérabilités de type dépassement de tampon,
- une vulnérabilité permettant à un attaquant de déposer des fichiers arbitraires,
- une vulnérabilité de type corruption de mémoire.
Ces vulnérabilités sont exploitables par l'envoi de paquets réseaux spécialement conçus, et peuvent toutes conduire à l'exécution de code arbitraire par l'attaquant.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Broadcom | Management Center | leurs versions antérieures. | ||
| Broadcom | Management Center | HP Intelligent Management Center PLAT 5.0 (E0101), | ||
| Broadcom | Management Center | HP Intelligent Management Center PLAT 5.0 (E0101L01), |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "leurs versions ant\u00e9rieures.",
"product": {
"name": "Management Center",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "HP Intelligent Management Center PLAT 5.0 (E0101),",
"product": {
"name": "Management Center",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
},
{
"description": "HP Intelligent Management Center PLAT 5.0 (E0101L01),",
"product": {
"name": "Management Center",
"vendor": {
"name": "Broadcom",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Description\n\nDe multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans HP Intelligent\nManagement Center :\n\n- plusieurs vuln\u00e9rabilit\u00e9s de type d\u00e9passement de tampon,\n- une vuln\u00e9rabilit\u00e9 permettant \u00e0 un attaquant de d\u00e9poser des fichiers\n arbitraires,\n- une vuln\u00e9rabilit\u00e9 de type corruption de m\u00e9moire.\n\nCes vuln\u00e9rabilit\u00e9s sont exploitables par l\u0027envoi de paquets r\u00e9seaux\nsp\u00e9cialement con\u00e7us, et peuvent toutes conduire \u00e0 l\u0027ex\u00e9cution de code\narbitraire par l\u0027attaquant.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2011-1852",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1852"
},
{
"name": "CVE-2011-1849",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1849"
},
{
"name": "CVE-2011-1850",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1850"
},
{
"name": "CVE-2011-1848",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1848"
},
{
"name": "CVE-2011-1851",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1851"
},
{
"name": "CVE-2011-1854",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1854"
},
{
"name": "CVE-2011-1853",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-1853"
}
],
"initial_release_date": "2011-05-12T00:00:00",
"last_revision_date": "2011-05-12T00:00:00",
"links": [],
"reference": "CERTA-2011-AVI-288",
"revisions": [
{
"description": "version initiale.",
"revision_date": "2011-05-12T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans HP Intelligent\nManagement Center, qui permettent \u00e0 un attaquant d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans HP Intelligent Management Center",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 HP c02822750 du 05 mai 2011",
"url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02822750"
}
]
}