{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Telco Cloud Infrastructure versions 3.x et 2.x sans le correctif ESXi70U3w-24784741","product":{"name":"Telco Cloud Infrastructure","vendor":{"name":"VMware","scada":false}}},{"description":"Cloud Foundation et vSphere Foundation versions 9.0.0.0 sans le correctif ESXi-9.0.0.0100-24813472","product":{"name":"Cloud Foundation","vendor":{"name":"VMware","scada":false}}},{"description":"Fusion versions 13.x ant\u00e9rieures \u00e0 13.6.4","product":{"name":"Fusion","vendor":{"name":"VMware","scada":false}}},{"description":"Telco Cloud Platform versions  3.x et 2.x sans le correctif ESXi70U3w-24784741","product":{"name":"Telco Cloud Platform","vendor":{"name":"VMware","scada":false}}},{"description":"Cloud Foundation versions 5.x sans le correctif ESXi80U3f-24784735","product":{"name":"Cloud Foundation","vendor":{"name":"VMware","scada":false}}},{"description":"Worstation versions 17.x ant\u00e9rieures \u00e0 17.6.4","product":{"name":"Workstation","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Tools versions 13.x.x ant\u00e9rieures \u00e0 13.0.1.0 pour Windows","product":{"name":"VMware Tools","vendor":{"name":"VMware","scada":false}}},{"description":"ESXI versions 7.0 sans le correctif ESXi70U3w-24784741","product":{"name":"ESXi","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Tools versions ant\u00e9rieures \u00e0 12.5.3 pour Windows","product":{"name":"VMware Tools","vendor":{"name":"VMware","scada":false}}},{"description":"Cloud Foundation versions 4.5.x sans le correctif ESXi70U3w-24784741","product":{"name":"Cloud Foundation","vendor":{"name":"VMware","scada":false}}},{"description":"ESXI versions 8.0 sans les correctifs ESXi80U3f-24784735 et  ESXi80U2e-24789317","product":{"name":"ESXi","vendor":{"name":"VMware","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2025-41236","url":"https://www.cve.org/CVERecord?id=CVE-2025-41236"},{"name":"CVE-2025-41237","url":"https://www.cve.org/CVERecord?id=CVE-2025-41237"},{"name":"CVE-2025-41238","url":"https://www.cve.org/CVERecord?id=CVE-2025-41238"},{"name":"CVE-2025-41239","url":"https://www.cve.org/CVERecord?id=CVE-2025-41239"}],"links":[],"reference":"CERTFR-2025-AVI-0592","revisions":[{"description":"Version initiale","revision_date":"2025-07-16T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware","vendor_advisories":[{"published_at":"2025-07-15","title":"Bulletin de s\u00e9curit\u00e9 VMware 35877","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35877"}]}