{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Visual Studio 2019 versions 16.11.x ant\u00e9rieures \u00e0 16.11.36","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.4 versions ant\u00e9rieures \u00e0 17.4.19","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft SharePoint Server Subscription Edition versions ant\u00e9rieures \u00e0 16.0.17328.20292","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.9 versions ant\u00e9rieures \u00e0 17.9.7","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.8 versions ant\u00e9rieures \u00e0 17.8.10","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Dynamics 365 Customer Insights versions ant\u00e9rieures \u00e0 1.38813.80","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft SharePoint Server 2019 versions ant\u00e9rieures \u00e0 16.0.10409.20047","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"PowerBI-client JS SDK versions ant\u00e9rieures \u00e0 2.23.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2017 versions 15.9.x ant\u00e9rieures \u00e0 15.9.62","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Bing Search pour iOS versions ant\u00e9rieures \u00e0 28.2.000000000","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft SharePoint Enterprise Server 2016 versions ant\u00e9rieures \u00e0 16.0.5448.1000","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Intune Mobile Application Management pour Android versions ant\u00e9rieures \u00e0 5.0.6215.0","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.6 versions ant\u00e9rieures \u00e0 17.6.15","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2024-30048","url":"https://www.cve.org/CVERecord?id=CVE-2024-30048"},{"name":"CVE-2024-30045","url":"https://www.cve.org/CVERecord?id=CVE-2024-30045"},{"name":"CVE-2024-30047","url":"https://www.cve.org/CVERecord?id=CVE-2024-30047"},{"name":"CVE-2024-32004","url":"https://www.cve.org/CVERecord?id=CVE-2024-32004"},{"name":"CVE-2024-30044","url":"https://www.cve.org/CVERecord?id=CVE-2024-30044"},{"name":"CVE-2024-30043","url":"https://www.cve.org/CVERecord?id=CVE-2024-30043"},{"name":"CVE-2024-30054","url":"https://www.cve.org/CVERecord?id=CVE-2024-30054"},{"name":"CVE-2024-30041","url":"https://www.cve.org/CVERecord?id=CVE-2024-30041"},{"name":"CVE-2024-30046","url":"https://www.cve.org/CVERecord?id=CVE-2024-30046"},{"name":"CVE-2024-30059","url":"https://www.cve.org/CVERecord?id=CVE-2024-30059"},{"name":"CVE-2024-32002","url":"https://www.cve.org/CVERecord?id=CVE-2024-32002"}],"links":[],"reference":"CERTFR-2024-AVI-0403","revisions":[{"description":"Version initiale","revision_date":"2024-05-15T00:00:00.000000"},{"description":"Mise \u00e0 jour des syst\u00e8mes affect\u00e9s","revision_date":"2024-05-15T00:00:00.000000"},{"description":"Correction de certaines versions.","revision_date":"2024-05-15T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nMicrosoft. Certaines d'entre elles permettent \u00e0 un attaquant de\nprovoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de\nservice \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n\nMicrosoft indique que la vuln\u00e9rabilit\u00e9 CVE-2024-30046 a \u00e9t\u00e9 divulgu\u00e9e\npubliquement.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30045 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30045"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30043 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30043"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30046 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30046"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30059 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30059"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30047 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30047"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30054 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30054"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-32002 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-32002"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30041 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30041"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30048 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30048"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-30044 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30044"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-32004 du 14 mai 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-32004"}]}