{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Exchange Server 2013 Cumulative Update 23","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.0","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft 365 Apps for Enterprise pour syst\u00e8mes 32 bits","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2019 Cumulative Update 11","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2019 version 16.9 (includes 16.0 - 16.8)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2016 Cumulative Update 22","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2016 Cumulative Update 23","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft 365 Apps for Enterprise pour syst\u00e8mes 64 bits","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2019 version 16.11 (includes 16.0 - 16.10)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Visual Studio Code","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Self-hosted Integration Runtime","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2019 Cumulative Update 12","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2022-29972","url":"https://www.cve.org/CVERecord?id=CVE-2022-29972"},{"name":"CVE-2022-29109","url":"https://www.cve.org/CVERecord?id=CVE-2022-29109"},{"name":"CVE-2022-29148","url":"https://www.cve.org/CVERecord?id=CVE-2022-29148"},{"name":"CVE-2022-23267","url":"https://www.cve.org/CVERecord?id=CVE-2022-23267"},{"name":"CVE-2022-21978","url":"https://www.cve.org/CVERecord?id=CVE-2022-21978"},{"name":"CVE-2022-29145","url":"https://www.cve.org/CVERecord?id=CVE-2022-29145"},{"name":"CVE-2022-29107","url":"https://www.cve.org/CVERecord?id=CVE-2022-29107"},{"name":"CVE-2022-29117","url":"https://www.cve.org/CVERecord?id=CVE-2022-29117"},{"name":"CVE-2022-30129","url":"https://www.cve.org/CVERecord?id=CVE-2022-30129"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-29972 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29972"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-29148 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29148"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-29145 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29145"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-29117 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29117"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-30129 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30129"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-29107 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29107"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-23267 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23267"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-21978 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-21978"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2022-29109 du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-29109"}],"reference":"CERTFR-2022-AVI-450","revisions":[{"description":"Version initiale","revision_date":"2022-05-11T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"D\u00e9ni de service"},{"description":"Contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits Microsoft</span>. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code \u00e0 distance, un\ncontournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9, un d\u00e9ni de service et\nune \u00e9l\u00e9vation de privil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft du 10 mai 2022","url":"https://msrc.microsoft.com/update-guide/"}]}