{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Azure Sentinel versions ant\u00e9rieures \u00e0 OMS Agent pour Linux GA v1.19.0","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}},{"description":"Azure SDK versions ant\u00e9rieures \u00e0 1.29.5","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}},{"description":"Azure Kubernetes Service Confidential Containers versions ant\u00e9rieures \u00e0 0.3.3","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}},{"description":"Azure Automation Update Management versions ant\u00e9rieures \u00e0 OMS Agent pour Linux GA v1.19.0","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}},{"description":"Azure Data Studio versions ant\u00e9rieures \u00e0 1.48.0","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}},{"description":"Azure Security Center versions ant\u00e9rieures \u00e0 OMS Agent pour Linux GA 1.19.0","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}},{"description":"Azure Automation versions ant\u00e9rieures \u00e0 OMS Agent pour Linux GA 1.19.0","product":{"name":"Azure","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2024-21400","url":"https://www.cve.org/CVERecord?id=CVE-2024-21400"},{"name":"CVE-2024-21330","url":"https://www.cve.org/CVERecord?id=CVE-2024-21330"},{"name":"CVE-2024-21421","url":"https://www.cve.org/CVERecord?id=CVE-2024-21421"},{"name":"CVE-2024-26203","url":"https://www.cve.org/CVERecord?id=CVE-2024-26203"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21400 du 12 mars 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21400"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-26203 du 12 mars 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26203"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21330 du 12 mars 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21330"},{"title":"Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2024-21421 du 12 mars 2024","url":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21421"}],"reference":"CERTFR-2024-AVI-0207","revisions":[{"description":"Version initiale","revision_date":"2024-03-13T00:00:00.000000"}],"risks":[{"description":"Usurpation d'identit\u00e9"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">Microsoft Azure</span>. Elles permettent \u00e0 un attaquant\nde provoquer une usurpation d'identit\u00e9 et une \u00e9l\u00e9vation de privil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans Microsoft Azure","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft Azure du 12 mars 2024","url":null}]}