{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"VMware Server 2.x ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware ESXi 3.x ;","product":{"name":"ESXi","vendor":{"name":"VMware","scada":false}}},{"description":"VMware vMA 4.x.","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware ESX Server 4.x ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware ESX Server 2.x ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware ESX Server 3.x ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}},{"description":"VMware ESXi 4.x ;","product":{"name":"ESXi","vendor":{"name":"VMware","scada":false}}},{"description":"VMware vCenter Server 4.x ;","product":{"name":"vCenter Server","vendor":{"name":"VMware","scada":false}}},{"description":"VMware VirtualCenter 2.x ;","product":{"name":"N/A","vendor":{"name":"VMware","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nLes vuln\u00e9rabilit\u00e9s pr\u00e9sentes dans les produits VMware peuvent \u00eatre\nexploit\u00e9es afin de porter atteinte \u00e0 l'int\u00e9grit\u00e9 et \u00e0 la confidentialit\u00e9\ndes donn\u00e9es, de r\u00e9aliser un d\u00e9ni de service, d'injecter et d'ex\u00e9cuter\nindirectement du code arbitraire, d'\u00e9lever ses privil\u00e8ges ou d'ex\u00e9cuter\ndu code arbitraire.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2009-2724","url":"https://www.cve.org/CVERecord?id=CVE-2009-2724"},{"name":"CVE-2009-0676","url":"https://www.cve.org/CVERecord?id=CVE-2009-0676"},{"name":"CVE-2009-2721","url":"https://www.cve.org/CVERecord?id=CVE-2009-2721"},{"name":"CVE-2008-3143","url":"https://www.cve.org/CVERecord?id=CVE-2008-3143"},{"name":"CVE-2009-2692","url":"https://www.cve.org/CVERecord?id=CVE-2009-2692"},{"name":"CVE-2009-2406","url":"https://www.cve.org/CVERecord?id=CVE-2009-2406"},{"name":"CVE-2009-1389","url":"https://www.cve.org/CVERecord?id=CVE-2009-1389"},{"name":"CVE-2008-0002","url":"https://www.cve.org/CVERecord?id=CVE-2008-0002"},{"name":"CVE-2009-1106","url":"https://www.cve.org/CVERecord?id=CVE-2009-1106"},{"name":"CVE-2009-1072","url":"https://www.cve.org/CVERecord?id=CVE-2009-1072"},{"name":"CVE-2008-4307","url":"https://www.cve.org/CVERecord?id=CVE-2008-4307"},{"name":"CVE-2009-1104","url":"https://www.cve.org/CVERecord?id=CVE-2009-1104"},{"name":"CVE-2009-2407","url":"https://www.cve.org/CVERecord?id=CVE-2009-2407"},{"name":"CVE-2008-3142","url":"https://www.cve.org/CVERecord?id=CVE-2008-3142"},{"name":"CVE-2009-1101","url":"https://www.cve.org/CVERecord?id=CVE-2009-1101"},{"name":"CVE-2009-2416","url":"https://www.cve.org/CVERecord?id=CVE-2009-2416"},{"name":"CVE-2009-1385","url":"https://www.cve.org/CVERecord?id=CVE-2009-1385"},{"name":"CVE-2009-0746","url":"https://www.cve.org/CVERecord?id=CVE-2009-0746"},{"name":"CVE-2009-2673","url":"https://www.cve.org/CVERecord?id=CVE-2009-2673"},{"name":"CVE-2007-5966","url":"https://www.cve.org/CVERecord?id=CVE-2007-5966"},{"name":"CVE-2009-2719","url":"https://www.cve.org/CVERecord?id=CVE-2009-2719"},{"name":"CVE-2008-4864","url":"https://www.cve.org/CVERecord?id=CVE-2008-4864"},{"name":"CVE-2009-2417","url":"https://www.cve.org/CVERecord?id=CVE-2009-2417"},{"name":"CVE-2009-1439","url":"https://www.cve.org/CVERecord?id=CVE-2009-1439"},{"name":"CVE-2009-0322","url":"https://www.cve.org/CVERecord?id=CVE-2009-0322"},{"name":"CVE-2009-1895","url":"https://www.cve.org/CVERecord?id=CVE-2009-1895"},{"name":"CVE-2009-1094","url":"https://www.cve.org/CVERecord?id=CVE-2009-1094"},{"name":"CVE-2009-0748","url":"https://www.cve.org/CVERecord?id=CVE-2009-0748"},{"name":"CVE-2008-3144","url":"https://www.cve.org/CVERecord?id=CVE-2008-3144"},{"name":"CVE-2009-0747","url":"https://www.cve.org/CVERecord?id=CVE-2009-0747"},{"name":"CVE-2009-0580","url":"https://www.cve.org/CVERecord?id=CVE-2009-0580"},{"name":"CVE-2009-1095","url":"https://www.cve.org/CVERecord?id=CVE-2009-1095"},{"name":"CVE-2009-2672","url":"https://www.cve.org/CVERecord?id=CVE-2009-2672"},{"name":"CVE-2009-0675","url":"https://www.cve.org/CVERecord?id=CVE-2009-0675"},{"name":"CVE-2007-5461","url":"https://www.cve.org/CVERecord?id=CVE-2007-5461"},{"name":"CVE-2009-2670","url":"https://www.cve.org/CVERecord?id=CVE-2009-2670"},{"name":"CVE-2009-1102","url":"https://www.cve.org/CVERecord?id=CVE-2009-1102"},{"name":"CVE-2009-1630","url":"https://www.cve.org/CVERecord?id=CVE-2009-1630"},{"name":"CVE-2009-0269","url":"https://www.cve.org/CVERecord?id=CVE-2009-0269"},{"name":"CVE-2008-3528","url":"https://www.cve.org/CVERecord?id=CVE-2008-3528"},{"name":"CVE-2008-5031","url":"https://www.cve.org/CVERecord?id=CVE-2008-5031"},{"name":"CVE-2008-1721","url":"https://www.cve.org/CVERecord?id=CVE-2008-1721"},{"name":"CVE-2009-1388","url":"https://www.cve.org/CVERecord?id=CVE-2009-1388"},{"name":"CVE-2009-1192","url":"https://www.cve.org/CVERecord?id=CVE-2009-1192"},{"name":"CVE-2009-2720","url":"https://www.cve.org/CVERecord?id=CVE-2009-2720"},{"name":"CVE-2009-0834","url":"https://www.cve.org/CVERecord?id=CVE-2009-0834"},{"name":"CVE-2009-2671","url":"https://www.cve.org/CVERecord?id=CVE-2009-2671"},{"name":"CVE-2009-2848","url":"https://www.cve.org/CVERecord?id=CVE-2009-2848"},{"name":"CVE-2009-2675","url":"https://www.cve.org/CVERecord?id=CVE-2009-2675"},{"name":"CVE-2008-1232","url":"https://www.cve.org/CVERecord?id=CVE-2008-1232"},{"name":"CVE-2009-0159","url":"https://www.cve.org/CVERecord?id=CVE-2009-0159"},{"name":"CVE-2009-0778","url":"https://www.cve.org/CVERecord?id=CVE-2009-0778"},{"name":"CVE-2009-2625","url":"https://www.cve.org/CVERecord?id=CVE-2009-2625"},{"name":"CVE-2009-1099","url":"https://www.cve.org/CVERecord?id=CVE-2009-1099"},{"name":"CVE-2009-1252","url":"https://www.cve.org/CVERecord?id=CVE-2009-1252"},{"name":"CVE-2009-2698","url":"https://www.cve.org/CVERecord?id=CVE-2009-2698"},{"name":"CVE-2008-2370","url":"https://www.cve.org/CVERecord?id=CVE-2008-2370"},{"name":"CVE-2009-0033","url":"https://www.cve.org/CVERecord?id=CVE-2009-0033"},{"name":"CVE-2009-2723","url":"https://www.cve.org/CVERecord?id=CVE-2009-2723"},{"name":"CVE-2009-1107","url":"https://www.cve.org/CVERecord?id=CVE-2009-1107"},{"name":"CVE-2009-2716","url":"https://www.cve.org/CVERecord?id=CVE-2009-2716"},{"name":"CVE-2007-5333","url":"https://www.cve.org/CVERecord?id=CVE-2007-5333"},{"name":"CVE-2008-1947","url":"https://www.cve.org/CVERecord?id=CVE-2008-1947"},{"name":"CVE-2009-1105","url":"https://www.cve.org/CVERecord?id=CVE-2009-1105"},{"name":"CVE-2007-6286","url":"https://www.cve.org/CVERecord?id=CVE-2007-6286"},{"name":"CVE-2009-0028","url":"https://www.cve.org/CVERecord?id=CVE-2009-0028"},{"name":"CVE-2009-1337","url":"https://www.cve.org/CVERecord?id=CVE-2009-1337"},{"name":"CVE-2009-0781","url":"https://www.cve.org/CVERecord?id=CVE-2009-0781"},{"name":"CVE-2009-2414","url":"https://www.cve.org/CVERecord?id=CVE-2009-2414"},{"name":"CVE-2007-2052","url":"https://www.cve.org/CVERecord?id=CVE-2007-2052"},{"name":"CVE-2009-1336","url":"https://www.cve.org/CVERecord?id=CVE-2009-1336"},{"name":"CVE-2009-0783","url":"https://www.cve.org/CVERecord?id=CVE-2009-0783"},{"name":"CVE-2008-5515","url":"https://www.cve.org/CVERecord?id=CVE-2008-5515"},{"name":"CVE-2007-4965","url":"https://www.cve.org/CVERecord?id=CVE-2007-4965"},{"name":"CVE-2009-1633","url":"https://www.cve.org/CVERecord?id=CVE-2009-1633"},{"name":"CVE-2009-2722","url":"https://www.cve.org/CVERecord?id=CVE-2009-2722"},{"name":"CVE-2008-5700","url":"https://www.cve.org/CVERecord?id=CVE-2008-5700"},{"name":"CVE-2009-1103","url":"https://www.cve.org/CVERecord?id=CVE-2009-1103"},{"name":"CVE-2009-1100","url":"https://www.cve.org/CVERecord?id=CVE-2009-1100"},{"name":"CVE-2009-2676","url":"https://www.cve.org/CVERecord?id=CVE-2009-2676"},{"name":"CVE-2007-5342","url":"https://www.cve.org/CVERecord?id=CVE-2007-5342"},{"name":"CVE-2009-1096","url":"https://www.cve.org/CVERecord?id=CVE-2009-1096"},{"name":"CVE-2009-1098","url":"https://www.cve.org/CVERecord?id=CVE-2009-1098"},{"name":"CVE-2009-0787","url":"https://www.cve.org/CVERecord?id=CVE-2009-0787"},{"name":"CVE-2008-1887","url":"https://www.cve.org/CVERecord?id=CVE-2008-1887"},{"name":"CVE-2009-1097","url":"https://www.cve.org/CVERecord?id=CVE-2009-1097"},{"name":"CVE-2009-2847","url":"https://www.cve.org/CVERecord?id=CVE-2009-2847"},{"name":"CVE-2008-2315","url":"https://www.cve.org/CVERecord?id=CVE-2008-2315"},{"name":"CVE-2009-0696","url":"https://www.cve.org/CVERecord?id=CVE-2009-0696"},{"name":"CVE-2009-2718","url":"https://www.cve.org/CVERecord?id=CVE-2009-2718"},{"name":"CVE-2009-0745","url":"https://www.cve.org/CVERecord?id=CVE-2009-0745"},{"name":"CVE-2009-1093","url":"https://www.cve.org/CVERecord?id=CVE-2009-1093"}],"links":[],"reference":"CERTA-2009-AVI-513","revisions":[{"description":"version initiale.","revision_date":"2009-11-24T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Injection de code indirecte"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"Plusieurs vuln\u00e9rabilit\u00e9s d\u00e9couvertes dans les produits VMware peuvent\n\u00eatre exploit\u00e9es \u00e0 distance par un utilisateur malintentionn\u00e9 afin de\ncompromettre le syst\u00e8me vuln\u00e9rable ou encore d'entraver son bon\nfonctionnement.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 VMware du 20 novembre 2009","url":"http://lists.vmware.com/pipermail/security-announce/2009/000070.html"}]}