{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"CF Deployment versions ant\u00e9rieures \u00e0 30.0.0","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Isolation Segment versions ant\u00e9rieures \u00e0 6.0.4+LTS-T","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Platform Automation Toolkit versions 5.1.x ant\u00e9rieures \u00e0 5.1.2","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Xenial Stemcells versions ant\u00e9rieures \u00e0 621.924","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Cflinuxfs4 versions ant\u00e9rieures \u00e0 1.84.0","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Tanzu Application Service for VMs versions 4.4.x ant\u00e9rieures \u00e0 4.4.32","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Tanzu Application Service for VMs versions 5.1.x ant\u00e9rieures \u00e0 5.1.2","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Platform Automation Toolkit versions 4.x ant\u00e9rieures \u00e0 4.432","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Tanzu Application Service for VMs versions 4.x LTS ant\u00e9rieures \u00e0 4.0.24+LTS-T","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Cflinuxfs3 versions ant\u00e9rieures \u00e0 0.388.0","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Tanzu Greenplum for Kubernetes versions ant\u00e9rieures \u00e0 2.0.0","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Operations Manager versions 3.x LTS ant\u00e9rieures \u00e0 3.0.26+LTS-T","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Operations Manager versions 2.x ant\u00e9rieures \u00e0 2.10.72","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Jammy Stemcells versions ant\u00e9rieures \u00e0 1.423","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Isolation Segment versions ant\u00e9rieures \u00e0 5.0.14","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Platform Automation Toolkit versions 5.0.x ant\u00e9rieures \u00e0 5.0.25","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Tanzu Application Service for VMs versions 5.0.x ant\u00e9rieures \u00e0 5.0.25","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"Isolation Segment versions ant\u00e9rieures \u00e0 4.0.24+LTS-T","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}},{"description":"VMware Tanzu Application Service for VMs versions 6.x LTS ant\u00e9rieures \u00e0 6.0.4+LTS-T","product":{"name":"Tanzu","vendor":{"name":"VMware","scada":false}}}],"affected_systems_content":"","content":"## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des correctifs (cf. section Documentation).","cves":[{"name":"CVE-2023-3817","url":"https://www.cve.org/CVERecord?id=CVE-2023-3817"},{"name":"CVE-2022-3715","url":"https://www.cve.org/CVERecord?id=CVE-2022-3715"},{"name":"CVE-2023-46045","url":"https://www.cve.org/CVERecord?id=CVE-2023-46045"},{"name":"CVE-2024-22365","url":"https://www.cve.org/CVERecord?id=CVE-2024-22365"},{"name":"CVE-2024-2398","url":"https://www.cve.org/CVERecord?id=CVE-2024-2398"},{"name":"CVE-2024-0727","url":"https://www.cve.org/CVERecord?id=CVE-2024-0727"},{"name":"CVE-2024-22667","url":"https://www.cve.org/CVERecord?id=CVE-2024-22667"},{"name":"CVE-2023-3446","url":"https://www.cve.org/CVERecord?id=CVE-2023-3446"},{"name":"CVE-2023-5678","url":"https://www.cve.org/CVERecord?id=CVE-2023-5678"}],"links":[],"reference":"CERTFR-2024-AVI-0587","revisions":[{"description":"Version initiale","revision_date":"2024-07-17T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware","vendor_advisories":[{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24688","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24688"},{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24685","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24685"},{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24687","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24687"},{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24686","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24686"},{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24684","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24684"},{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24683","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24683"},{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24701","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24701"},{"published_at":"2024-07-16","title":"Bulletin de s\u00e9curit\u00e9 VMware 24689","url":"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24689"}]}