{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"macOS Ventura versions ant\u00e9rieures \u00e0 13.6.4","product":{"name":"macOS","vendor":{"name":"Apple","scada":false}}},{"description":"iOS versions 16.x ant\u00e9rieures \u00e0 16.7.5","product":{"name":"N/A","vendor":{"name":"Apple","scada":false}}},{"description":"iPadOS versions 16.x ant\u00e9rieures \u00e0 16.7.5","product":{"name":"N/A","vendor":{"name":"Apple","scada":false}}},{"description":"macOS Sonoma versions ant\u00e9rieures \u00e0 14.3","product":{"name":"macOS","vendor":{"name":"Apple","scada":false}}},{"description":"iOS versions 17.x ant\u00e9rieures \u00e0 17.3","product":{"name":"N/A","vendor":{"name":"Apple","scada":false}}},{"description":"Safari versions ant\u00e9rieures \u00e0 17.3","product":{"name":"Safari","vendor":{"name":"Apple","scada":false}}},{"description":"macOS Monterey versions ant\u00e9rieures \u00e0 12.7.3","product":{"name":"macOS","vendor":{"name":"Apple","scada":false}}},{"description":"iPadOS versions 17.x ant\u00e9rieures \u00e0 17.3","product":{"name":"N/A","vendor":{"name":"Apple","scada":false}}},{"description":"iOS versions 15.x ant\u00e9rieures \u00e0 15.8.1","product":{"name":"N/A","vendor":{"name":"Apple","scada":false}}},{"description":"iPadOS versions ant\u00e9rieures \u00e0 15.8.1","product":{"name":"N/A","vendor":{"name":"Apple","scada":false}}},{"description":"visionOS versions ant\u00e9rieures \u00e0 1.0.1","product":{"name":"N/A","vendor":{"name":"Apple","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2024-23204","url":"https://www.cve.org/CVERecord?id=CVE-2024-23204"},{"name":"CVE-2024-23208","url":"https://www.cve.org/CVERecord?id=CVE-2024-23208"},{"name":"CVE-2023-38546","url":"https://www.cve.org/CVERecord?id=CVE-2023-38546"},{"name":"CVE-2023-42916","url":"https://www.cve.org/CVERecord?id=CVE-2023-42916"},{"name":"CVE-2024-23224","url":"https://www.cve.org/CVERecord?id=CVE-2024-23224"},{"name":"CVE-2024-23217","url":"https://www.cve.org/CVERecord?id=CVE-2024-23217"},{"name":"CVE-2024-23210","url":"https://www.cve.org/CVERecord?id=CVE-2024-23210"},{"name":"CVE-2023-42935","url":"https://www.cve.org/CVERecord?id=CVE-2023-42935"},{"name":"CVE-2023-42937","url":"https://www.cve.org/CVERecord?id=CVE-2023-42937"},{"name":"CVE-2023-40528","url":"https://www.cve.org/CVERecord?id=CVE-2023-40528"},{"name":"CVE-2023-42887","url":"https://www.cve.org/CVERecord?id=CVE-2023-42887"},{"name":"CVE-2023-42917","url":"https://www.cve.org/CVERecord?id=CVE-2023-42917"},{"name":"CVE-2024-23213","url":"https://www.cve.org/CVERecord?id=CVE-2024-23213"},{"name":"CVE-2024-23219","url":"https://www.cve.org/CVERecord?id=CVE-2024-23219"},{"name":"CVE-2024-23211","url":"https://www.cve.org/CVERecord?id=CVE-2024-23211"},{"name":"CVE-2024-23222","url":"https://www.cve.org/CVERecord?id=CVE-2024-23222"},{"name":"CVE-2023-42915","url":"https://www.cve.org/CVERecord?id=CVE-2023-42915"},{"name":"CVE-2024-23207","url":"https://www.cve.org/CVERecord?id=CVE-2024-23207"},{"name":"CVE-2024-23203","url":"https://www.cve.org/CVERecord?id=CVE-2024-23203"},{"name":"CVE-2024-23206","url":"https://www.cve.org/CVERecord?id=CVE-2024-23206"},{"name":"CVE-2024-23218","url":"https://www.cve.org/CVERecord?id=CVE-2024-23218"},{"name":"CVE-2024-23209","url":"https://www.cve.org/CVERecord?id=CVE-2024-23209"},{"name":"CVE-2024-23215","url":"https://www.cve.org/CVERecord?id=CVE-2024-23215"},{"name":"CVE-2023-42888","url":"https://www.cve.org/CVERecord?id=CVE-2023-42888"},{"name":"CVE-2024-23223","url":"https://www.cve.org/CVERecord?id=CVE-2024-23223"},{"name":"CVE-2023-38039","url":"https://www.cve.org/CVERecord?id=CVE-2023-38039"},{"name":"CVE-2024-23212","url":"https://www.cve.org/CVERecord?id=CVE-2024-23212"},{"name":"CVE-2023-38545","url":"https://www.cve.org/CVERecord?id=CVE-2023-38545"},{"name":"CVE-2024-23214","url":"https://www.cve.org/CVERecord?id=CVE-2024-23214"}],"links":[],"reference":"CERTFR-2024-AVI-0062","revisions":[{"description":"Version initiale","revision_date":"2024-01-23T00:00:00.000000"},{"description":"Ajout du bulletin de s\u00e9curit\u00e9 Apple HT214070.","revision_date":"2024-02-01T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">les produits Apple</span>. Elles permettent \u00e0 un\nattaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un\ncontournement de la politique de s\u00e9curit\u00e9 et une ex\u00e9cution de code\narbitraire \u00e0 distance.\n\nD'apr\u00e8s l'\u00e9diteur, la vuln\u00e9rabilit\u00e9 CVE-2024-23222 est activement\nexploit\u00e9e. <span class=\"mx_EventTile_body\" dir=\"auto\">Apple a \u00e9galement\npubli\u00e9 des correctifs pour les appareils plus anciens qui ne supportent\npas les versions plus r\u00e9centes d'iOS et iPadOS. Ceux-ci concernent les\nvuln\u00e9rabilit\u00e9s CVE-2023-42916 et CVE-2023-42917 qui sont \u00e9galement\nactivement exploit\u00e9es.</span>\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214056 du 22 janvier 2024","url":"https://support.apple.com/en-us/HT214056"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214059 du 22 janvier 2024","url":"https://support.apple.com/en-us/HT214059"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214062 du 22 janvier 2024","url":"https://support.apple.com/en-us/HT214062"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214063 du 22 janvier 2024","url":"https://support.apple.com/en-us/HT214063"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214070 du 31 janvier 2024","url":"https://support.apple.com/en-us/HT214070"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214057 du 22 janvier 2024","url":"https://support.apple.com/en-us/HT214057"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214058 du 22 janvier 2024","url":"https://support.apple.com/en-us/HT214058"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Apple HT214061 du 22 janvier 2024","url":"https://support.apple.com/en-us/HT214061"}]}