{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Microsoft Dynamics 365 Customer Engagement V9.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Dynamics 365 Business Central 2022 Release Wave 2","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Teams pour Android","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2016 Cumulative Update 23","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Skype pour Business Server 2019 CU7","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Dynamics 365 (on-premises) version 9.1","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visio 2016","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Entra Jira Single-Sign-On Plugin","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Exchange Server 2019 Cumulative Update 13 et 14","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Visual Studio 2022 version 17.4, 17.6 et 17.8","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Microsoft Dynamics 365 Business Central 2023 Release Wave 1 et 2","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Skype pour Business 2016","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2024-21396","url":"https://www.cve.org/CVERecord?id=CVE-2024-21396"},{"name":"CVE-2024-20673","url":"https://www.cve.org/CVERecord?id=CVE-2024-20673"},{"name":"CVE-2024-20695","url":"https://www.cve.org/CVERecord?id=CVE-2024-20695"},{"name":"CVE-2024-21393","url":"https://www.cve.org/CVERecord?id=CVE-2024-21393"},{"name":"CVE-2024-21395","url":"https://www.cve.org/CVERecord?id=CVE-2024-21395"},{"name":"CVE-2024-21401","url":"https://www.cve.org/CVERecord?id=CVE-2024-21401"},{"name":"CVE-2024-21327","url":"https://www.cve.org/CVERecord?id=CVE-2024-21327"},{"name":"CVE-2024-21389","url":"https://www.cve.org/CVERecord?id=CVE-2024-21389"},{"name":"CVE-2024-21404","url":"https://www.cve.org/CVERecord?id=CVE-2024-21404"},{"name":"CVE-2024-21386","url":"https://www.cve.org/CVERecord?id=CVE-2024-21386"},{"name":"CVE-2024-21374","url":"https://www.cve.org/CVERecord?id=CVE-2024-21374"},{"name":"CVE-2024-21410","url":"https://www.cve.org/CVERecord?id=CVE-2024-21410"},{"name":"CVE-2024-21328","url":"https://www.cve.org/CVERecord?id=CVE-2024-21328"},{"name":"CVE-2024-21380","url":"https://www.cve.org/CVERecord?id=CVE-2024-21380"},{"name":"CVE-2024-21394","url":"https://www.cve.org/CVERecord?id=CVE-2024-21394"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21389 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21389"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20695 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20695"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21404 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21404"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21380 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21380"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21396 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21396"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21410 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21410"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21393 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21393"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21401 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21401"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21395 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21395"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21386 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21386"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21328 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21328"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21394 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21394"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21327 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21327"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-20673 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20673"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21374 du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21374"}],"reference":"CERTFR-2024-AVI-0131","revisions":[{"description":"Version initiale","revision_date":"2024-02-14T00:00:00.000000"}],"risks":[{"description":"Usurpation d'identit\u00e9"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"D\u00e9ni de service"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">les produits Microsoft</span>. Elles permettent \u00e0 un\nattaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un\nd\u00e9ni de service, une \u00e9l\u00e9vation de privil\u00e8ges, une usurpation d'identit\u00e9\net une ex\u00e9cution de code arbitraire \u00e0 distance.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft du 13 f\u00e9vrier 2024","url":"https://msrc.microsoft.com/update-guide/"}]}