{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"OneDrive pour Android","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.0","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.2","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.5","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2019 version 16.11 (inclus 16.0 \u00e0 16.10)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Malware Protection Engine","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Dynamics 365 (on-premises) version 9.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft 365 Apps pour Enterprise pour syst\u00e8mes 32 bits","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.4","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Dynamics 365 (on-premises) version 9.0","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"OneDrive pour MacOS Installer","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"OneDrive pour iOS","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2017 version 15.9 (inclus 15.0 \u00e0 15.8)","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft 365 Apps pour Enterprise pour syst\u00e8mes 64 bits","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2023-23946","url":"https://www.cve.org/CVERecord?id=CVE-2023-23946"},{"name":"CVE-2023-23397","url":"https://www.cve.org/CVERecord?id=CVE-2023-23397"},{"name":"CVE-2023-24930","url":"https://www.cve.org/CVERecord?id=CVE-2023-24930"},{"name":"CVE-2023-23398","url":"https://www.cve.org/CVERecord?id=CVE-2023-23398"},{"name":"CVE-2023-24923","url":"https://www.cve.org/CVERecord?id=CVE-2023-24923"},{"name":"CVE-2023-22490","url":"https://www.cve.org/CVERecord?id=CVE-2023-22490"},{"name":"CVE-2023-24891","url":"https://www.cve.org/CVERecord?id=CVE-2023-24891"},{"name":"CVE-2023-24920","url":"https://www.cve.org/CVERecord?id=CVE-2023-24920"},{"name":"CVE-2023-22743","url":"https://www.cve.org/CVERecord?id=CVE-2023-22743"},{"name":"CVE-2023-23399","url":"https://www.cve.org/CVERecord?id=CVE-2023-23399"},{"name":"CVE-2023-24890","url":"https://www.cve.org/CVERecord?id=CVE-2023-24890"},{"name":"CVE-2023-24882","url":"https://www.cve.org/CVERecord?id=CVE-2023-24882"},{"name":"CVE-2023-23618","url":"https://www.cve.org/CVERecord?id=CVE-2023-23618"},{"name":"CVE-2023-24879","url":"https://www.cve.org/CVERecord?id=CVE-2023-24879"},{"name":"CVE-2023-24919","url":"https://www.cve.org/CVERecord?id=CVE-2023-24919"},{"name":"CVE-2023-23389","url":"https://www.cve.org/CVERecord?id=CVE-2023-23389"},{"name":"CVE-2023-24921","url":"https://www.cve.org/CVERecord?id=CVE-2023-24921"},{"name":"CVE-2023-24922","url":"https://www.cve.org/CVERecord?id=CVE-2023-24922"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-23946 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23946"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24920 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24920"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24891 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24891"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24919 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24919"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24882 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24882"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-23398 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23398"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24879 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24879"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-23397 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23397"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24890 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24890"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24921 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24921"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-22490 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-22490"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-23618 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23618"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24930 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24930"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-23399 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23399"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-22743 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-22743"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24923 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24923"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-24922 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24922"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2023-23389 du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23389"}],"reference":"CERTFR-2023-AVI-0234","revisions":[{"description":"Version initiale","revision_date":"2023-03-15T00:00:00.000000"}],"risks":[{"description":"Usurpation d'identit\u00e9"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Contournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits Microsoft</span>. Elles permettent \u00e0 un\nattaquant de provoquer une usurpation d'identit\u00e9, une \u00e9l\u00e9vation de\nprivil\u00e8ges, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un\ncontournement de la fonctionnalit\u00e9 de s\u00e9curit\u00e9 et une ex\u00e9cution de code\n\u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft du 14 mars 2023","url":"https://msrc.microsoft.com/update-guide/"}]}