{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Xen-unstable toutes versions","product":{"name":"Xen","vendor":{"name":"XEN","scada":false}}},{"description":"Xen versions 4.15.x","product":{"name":"Xen","vendor":{"name":"XEN","scada":false}}},{"description":"Xen versions 4.16.x","product":{"name":"Xen","vendor":{"name":"XEN","scada":false}}},{"description":"Xen versions 4.17.x","product":{"name":"Xen","vendor":{"name":"XEN","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2023-34327","url":"https://www.cve.org/CVERecord?id=CVE-2023-34327"},{"name":"CVE-2023-34323","url":"https://www.cve.org/CVERecord?id=CVE-2023-34323"},{"name":"CVE-2023-34326","url":"https://www.cve.org/CVERecord?id=CVE-2023-34326"},{"name":"CVE-2023-34325","url":"https://www.cve.org/CVERecord?id=CVE-2023-34325"},{"name":"CVE-2023-34324","url":"https://www.cve.org/CVERecord?id=CVE-2023-34324"},{"name":"CVE-2023-34328","url":"https://www.cve.org/CVERecord?id=CVE-2023-34328"},{"name":"CVE-2015-8104","url":"https://www.cve.org/CVERecord?id=CVE-2015-8104"}],"links":[],"reference":"CERTFR-2023-AVI-0834","revisions":[{"description":"Version initiale","revision_date":"2023-10-12T00:00:00.000000"}],"risks":[{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"D\u00e9ni de service"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans<span\nclass=\"textit\"> Xen</span>. Elles permettent \u00e0 un attaquant de provoquer\nun d\u00e9ni de service, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Xen","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Xen XSA-441 du 10 octobre 2023","url":"https://xenbits.xen.org/xsa/advisory-441.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Xen XSA-440 du 10 octobre 2023","url":"https://xenbits.xen.org/xsa/advisory-440.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Xen XSA-443 du 10 octobre 2023","url":"https://xenbits.xen.org/xsa/advisory-443.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Xen XSA-442 du 10 octobre 2023","url":"https://xenbits.xen.org/xsa/advisory-442.html"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Xen XSA-444 du 10 octobre 2023","url":"https://xenbits.xen.org/xsa/advisory-444.html"}]}