{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Android versions ant\u00e9rieures \u00e0 12, 12L, 13 et 14 avant le correctif du 5 avril 2024","product":{"name":"Android","vendor":{"name":"Google","scada":false}}},{"description":"Micrologiciel des Pixels avant le correctif du 5 avril 2024","product":{"name":"N/A","vendor":{"name":"Google","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2024-29749","url":"https://www.cve.org/CVERecord?id=CVE-2024-29749"},{"name":"CVE-2024-29757","url":"https://www.cve.org/CVERecord?id=CVE-2024-29757"},{"name":"CVE-2024-20040","url":"https://www.cve.org/CVERecord?id=CVE-2024-20040"},{"name":"CVE-2024-29740","url":"https://www.cve.org/CVERecord?id=CVE-2024-29740"},{"name":"CVE-2024-0042","url":"https://www.cve.org/CVERecord?id=CVE-2024-0042"},{"name":"CVE-2024-29756","url":"https://www.cve.org/CVERecord?id=CVE-2024-29756"},{"name":"CVE-2024-29782","url":"https://www.cve.org/CVERecord?id=CVE-2024-29782"},{"name":"CVE-2024-21472","url":"https://www.cve.org/CVERecord?id=CVE-2024-21472"},{"name":"CVE-2023-33115","url":"https://www.cve.org/CVERecord?id=CVE-2023-33115"},{"name":"CVE-2023-33023","url":"https://www.cve.org/CVERecord?id=CVE-2023-33023"},{"name":"CVE-2024-27231","url":"https://www.cve.org/CVERecord?id=CVE-2024-27231"},{"name":"CVE-2023-33103","url":"https://www.cve.org/CVERecord?id=CVE-2023-33103"},{"name":"CVE-2024-29745","url":"https://www.cve.org/CVERecord?id=CVE-2024-29745"},{"name":"CVE-2024-29742","url":"https://www.cve.org/CVERecord?id=CVE-2024-29742"},{"name":"CVE-2024-0026","url":"https://www.cve.org/CVERecord?id=CVE-2024-0026"},{"name":"CVE-2024-23713","url":"https://www.cve.org/CVERecord?id=CVE-2024-23713"},{"name":"CVE-2023-28547","url":"https://www.cve.org/CVERecord?id=CVE-2023-28547"},{"name":"CVE-2024-23704","url":"https://www.cve.org/CVERecord?id=CVE-2024-23704"},{"name":"CVE-2024-29750","url":"https://www.cve.org/CVERecord?id=CVE-2024-29750"},{"name":"CVE-2024-21468","url":"https://www.cve.org/CVERecord?id=CVE-2024-21468"},{"name":"CVE-2024-0027","url":"https://www.cve.org/CVERecord?id=CVE-2024-0027"},{"name":"CVE-2024-29743","url":"https://www.cve.org/CVERecord?id=CVE-2024-29743"},{"name":"CVE-2023-28582","url":"https://www.cve.org/CVERecord?id=CVE-2023-28582"},{"name":"CVE-2023-33084","url":"https://www.cve.org/CVERecord?id=CVE-2023-33084"},{"name":"CVE-2024-23710","url":"https://www.cve.org/CVERecord?id=CVE-2024-23710"},{"name":"CVE-2024-20039","url":"https://www.cve.org/CVERecord?id=CVE-2024-20039"},{"name":"CVE-2023-33096","url":"https://www.cve.org/CVERecord?id=CVE-2023-33096"},{"name":"CVE-2024-21463","url":"https://www.cve.org/CVERecord?id=CVE-2024-21463"},{"name":"CVE-2024-29738","url":"https://www.cve.org/CVERecord?id=CVE-2024-29738"},{"name":"CVE-2024-29754","url":"https://www.cve.org/CVERecord?id=CVE-2024-29754"},{"name":"CVE-2024-29753","url":"https://www.cve.org/CVERecord?id=CVE-2024-29753"},{"name":"CVE-2024-23712","url":"https://www.cve.org/CVERecord?id=CVE-2024-23712"},{"name":"CVE-2023-33104","url":"https://www.cve.org/CVERecord?id=CVE-2023-33104"},{"name":"CVE-2024-29744","url":"https://www.cve.org/CVERecord?id=CVE-2024-29744"},{"name":"CVE-2023-33095","url":"https://www.cve.org/CVERecord?id=CVE-2023-33095"},{"name":"CVE-2024-29751","url":"https://www.cve.org/CVERecord?id=CVE-2024-29751"},{"name":"CVE-2024-29746","url":"https://www.cve.org/CVERecord?id=CVE-2024-29746"},{"name":"CVE-2023-33099","url":"https://www.cve.org/CVERecord?id=CVE-2023-33099"},{"name":"CVE-2024-29741","url":"https://www.cve.org/CVERecord?id=CVE-2024-29741"},{"name":"CVE-2024-29755","url":"https://www.cve.org/CVERecord?id=CVE-2024-29755"},{"name":"CVE-2024-0022","url":"https://www.cve.org/CVERecord?id=CVE-2024-0022"},{"name":"CVE-2023-21267","url":"https://www.cve.org/CVERecord?id=CVE-2023-21267"},{"name":"CVE-2024-29783","url":"https://www.cve.org/CVERecord?id=CVE-2024-29783"},{"name":"CVE-2024-29747","url":"https://www.cve.org/CVERecord?id=CVE-2024-29747"},{"name":"CVE-2023-33100","url":"https://www.cve.org/CVERecord?id=CVE-2023-33100"},{"name":"CVE-2024-29748","url":"https://www.cve.org/CVERecord?id=CVE-2024-29748"},{"name":"CVE-2023-32890","url":"https://www.cve.org/CVERecord?id=CVE-2023-32890"},{"name":"CVE-2024-29752","url":"https://www.cve.org/CVERecord?id=CVE-2024-29752"},{"name":"CVE-2023-33101","url":"https://www.cve.org/CVERecord?id=CVE-2023-33101"},{"name":"CVE-2024-27232","url":"https://www.cve.org/CVERecord?id=CVE-2024-27232"},{"name":"CVE-2023-33086","url":"https://www.cve.org/CVERecord?id=CVE-2023-33086"},{"name":"CVE-2023-43515","url":"https://www.cve.org/CVERecord?id=CVE-2023-43515"},{"name":"CVE-2024-29739","url":"https://www.cve.org/CVERecord?id=CVE-2024-29739"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Android du 01 avril 2024","url":"https://source.android.com/docs/security/bulletin/2024-04-01?hl=fr"},{"title":"Bulletin de s\u00e9curit\u00e9 Pixel du 02 avril 2024","url":"https://source.android.com/docs/security/bulletin/pixel/2024-04-01?hl=fr"}],"reference":"CERTFR-2024-AVI-0272","revisions":[{"description":"Version initiale","revision_date":"2024-04-04T00:00:00.000000"}],"risks":[{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"D\u00e9ni de service"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">les produits Android</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service, une atteinte\n\u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de privil\u00e8ges. Google\nindique que les vuln\u00e9rabilit\u00e9s CVE-2024-29745 et CVE-2024-29748\naffectant les Pixels pourraient \u00eatre activement exploit\u00e9es dans le cadre\nd'attaques cibl\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Google Android et Pixel","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Google Pixel du 02 avril 2024","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Google Android du 01 avril 2024","url":null}]}