{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Exchange Server 2019","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"ChakraCore","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Yammer Desktop App","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Lync 2013 Service Pack 1 (64 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Skype pour Business 2016 (64 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Lync Basic 2013 Service Pack 1 (64 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft.PowerShell.Archive 1.2.2.0","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Team Foundation Server 2018 Update 3","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Team Foundation Server 2017 Update 3.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2010","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Dynamics 365 (on-premises) version 8","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Azure App Service on Azure Stack","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}},{"description":"Skype pour Business 2016 Basic (32 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Skype pour Business 2016 (32 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"PowerShell Core 6.0","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Team Foundation Server 2018 Update 1.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Team Foundation Server 2018 Update 3.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Lync Basic 2013 Service Pack 1 (32 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2013","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2016","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Skype pour Business 2016 Basic (64 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"PowerShell Core 6.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Lync 2013 Service Pack 1 (32 bits)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2018-8541","url":"https://www.cve.org/CVERecord?id=CVE-2018-8541"},{"name":"CVE-2018-8256","url":"https://www.cve.org/CVERecord?id=CVE-2018-8256"},{"name":"CVE-2018-8606","url":"https://www.cve.org/CVERecord?id=CVE-2018-8606"},{"name":"CVE-2018-8608","url":"https://www.cve.org/CVERecord?id=CVE-2018-8608"},{"name":"CVE-2018-8557","url":"https://www.cve.org/CVERecord?id=CVE-2018-8557"},{"name":"CVE-2018-8602","url":"https://www.cve.org/CVERecord?id=CVE-2018-8602"},{"name":"CVE-2018-8546","url":"https://www.cve.org/CVERecord?id=CVE-2018-8546"},{"name":"CVE-2018-8581","url":"https://www.cve.org/CVERecord?id=CVE-2018-8581"},{"name":"CVE-2018-8588","url":"https://www.cve.org/CVERecord?id=CVE-2018-8588"},{"name":"CVE-2018-8605","url":"https://www.cve.org/CVERecord?id=CVE-2018-8605"},{"name":"CVE-2018-8556","url":"https://www.cve.org/CVERecord?id=CVE-2018-8556"},{"name":"CVE-2018-8415","url":"https://www.cve.org/CVERecord?id=CVE-2018-8415"},{"name":"CVE-2018-8543","url":"https://www.cve.org/CVERecord?id=CVE-2018-8543"},{"name":"CVE-2018-8551","url":"https://www.cve.org/CVERecord?id=CVE-2018-8551"},{"name":"CVE-2018-8609","url":"https://www.cve.org/CVERecord?id=CVE-2018-8609"},{"name":"CVE-2018-8600","url":"https://www.cve.org/CVERecord?id=CVE-2018-8600"},{"name":"CVE-2018-8555","url":"https://www.cve.org/CVERecord?id=CVE-2018-8555"},{"name":"CVE-2018-8607","url":"https://www.cve.org/CVERecord?id=CVE-2018-8607"},{"name":"CVE-2018-8569","url":"https://www.cve.org/CVERecord?id=CVE-2018-8569"},{"name":"CVE-2018-8529","url":"https://www.cve.org/CVERecord?id=CVE-2018-8529"},{"name":"CVE-2018-8542","url":"https://www.cve.org/CVERecord?id=CVE-2018-8542"}],"links":[],"reference":"CERTFR-2018-AVI-554","revisions":[{"description":"Version initiale","revision_date":"2018-11-14T00:00:00.000000"}],"risks":[{"description":"Usurpation d'identit\u00e9"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"D\u00e9ni de service"},{"description":"Contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits Microsoft</span>. Elles permettent \u00e0 un\nattaquant de provoquer un contournement de la fonctionnalit\u00e9 de\ns\u00e9curit\u00e9, une \u00e9l\u00e9vation de privil\u00e8ges, une ex\u00e9cution de code \u00e0 distance,\nune usurpation d'identit\u00e9 et un d\u00e9ni de service.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft du 13 novembre 2018","url":"https://portal.msrc.microsoft.com/fr-FR/security-guidance"}]}