cvelistv5 - cve-2026-23286

CVE-2026-23286 (GCVE-0-2026-23286)

Vulnerability from cvelistv5

Published

2026-03-25 10:26

Modified

2026-04-18 08:57

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix null-ptr-deref in lec_arp_clear_vccs syzkaller reported a null-ptr-deref in lec_arp_clear_vccs(). This issue can be easily reproduced using the syzkaller reproducer. In the ATM LANE (LAN Emulation) module, the same atm_vcc can be shared by multiple lec_arp_table entries (e.g., via entry->vcc or entry->recv_vcc). When the underlying VCC is closed, lec_vcc_close() iterates over all ARP entries and calls lec_arp_clear_vccs() for each matched entry. For example, when lec_vcc_close() iterates through the hlists in priv->lec_arp_empty_ones or other ARP tables: 1. In the first iteration, for the first matched ARP entry sharing the VCC, lec_arp_clear_vccs() frees the associated vpriv (which is vcc->user_back) and sets vcc->user_back to NULL. 2. In the second iteration, for the next matched ARP entry sharing the same VCC, lec_arp_clear_vccs() is called again. It obtains a NULL vpriv from vcc->user_back (via LEC_VCC_PRIV(vcc)) and then attempts to dereference it via `vcc->pop = vpriv->old_pop`, leading to a null-ptr-deref crash. Fix this by adding a null check for vpriv before dereferencing it. If vpriv is already NULL, it means the VCC has been cleared by a previous call, so we can safely skip the cleanup and just clear the entry's vcc/recv_vcc pointers. The entire cleanup block (including vcc_release_async()) is placed inside the vpriv guard because a NULL vpriv indicates the VCC has already been fully released by a prior iteration — repeating the teardown would redundantly set flags and trigger callbacks on an already-closing socket. The Fixes tag points to the initial commit because the entry->vcc path has been vulnerable since the original code. The entry->recv_vcc path was later added by commit 8d9f73c0ad2f ("atm: fix a memory leak of vcc->user_back") with the same pattern, and both paths are fixed here.

References

URL

Tags

	https://git.kernel.org/stable/c/8aff65a82b6389ec674d46e5b3d3ae6f07db5e3e
	https://git.kernel.org/stable/c/30c9744a989feb22cfbb84170eb0e038a7a2c1da
	https://git.kernel.org/stable/c/e9665986eb127290ceb535bd5d04d7a84265d94f
	https://git.kernel.org/stable/c/622062f24644b4536d3f437e0cf7a8c4bb421665
	https://git.kernel.org/stable/c/2d9f57ea29a1f1772373b98a509b44d49fda609e
	https://git.kernel.org/stable/c/7ea92ab075d809ec8a96669a5ecf00f752057875
	https://git.kernel.org/stable/c/5f1cfea7921f5c126a441d973690eeba52677b64
	https://git.kernel.org/stable/c/101bacb303e89dc2e0640ae6a5e0fb97c4eb45bb

Impacted products

Vendor

Product

Version

Linux

Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Version: 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux

Version: 2.6.12

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/atm/lec.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "8aff65a82b6389ec674d46e5b3d3ae6f07db5e3e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "30c9744a989feb22cfbb84170eb0e038a7a2c1da",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "e9665986eb127290ceb535bd5d04d7a84265d94f",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "622062f24644b4536d3f437e0cf7a8c4bb421665",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "2d9f57ea29a1f1772373b98a509b44d49fda609e",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "7ea92ab075d809ec8a96669a5ecf00f752057875",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "5f1cfea7921f5c126a441d973690eeba52677b64",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            },
            {
              "lessThan": "101bacb303e89dc2e0640ae6a5e0fb97c4eb45bb",
              "status": "affected",
              "version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/atm/lec.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "2.6.12"
            },
            {
              "lessThan": "2.6.12",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.253",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.203",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.167",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.130",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.77",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.17",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.19.*",
              "status": "unaffected",
              "version": "6.19.7",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.253",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.203",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.167",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.130",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.77",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.17",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.19.7",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0",
                  "versionStartIncluding": "2.6.12",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\natm: lec: fix null-ptr-deref in lec_arp_clear_vccs\n\nsyzkaller reported a null-ptr-deref in lec_arp_clear_vccs().\nThis issue can be easily reproduced using the syzkaller reproducer.\n\nIn the ATM LANE (LAN Emulation) module, the same atm_vcc can be shared by\nmultiple lec_arp_table entries (e.g., via entry-\u003evcc or entry-\u003erecv_vcc).\nWhen the underlying VCC is closed, lec_vcc_close() iterates over all\nARP entries and calls lec_arp_clear_vccs() for each matched entry.\n\nFor example, when lec_vcc_close() iterates through the hlists in\npriv-\u003elec_arp_empty_ones or other ARP tables:\n\n1. In the first iteration, for the first matched ARP entry sharing the VCC,\nlec_arp_clear_vccs() frees the associated vpriv (which is vcc-\u003euser_back)\nand sets vcc-\u003euser_back to NULL.\n2. In the second iteration, for the next matched ARP entry sharing the same\nVCC, lec_arp_clear_vccs() is called again. It obtains a NULL vpriv from\nvcc-\u003euser_back (via LEC_VCC_PRIV(vcc)) and then attempts to dereference it\nvia `vcc-\u003epop = vpriv-\u003eold_pop`, leading to a null-ptr-deref crash.\n\nFix this by adding a null check for vpriv before dereferencing\nit. If vpriv is already NULL, it means the VCC has been cleared\nby a previous call, so we can safely skip the cleanup and just\nclear the entry\u0027s vcc/recv_vcc pointers.\n\nThe entire cleanup block (including vcc_release_async()) is placed inside\nthe vpriv guard because a NULL vpriv indicates the VCC has already been\nfully released by a prior iteration \u2014 repeating the teardown would\nredundantly set flags and trigger callbacks on an already-closing socket.\n\nThe Fixes tag points to the initial commit because the entry-\u003evcc path has\nbeen vulnerable since the original code. The entry-\u003erecv_vcc path was later\nadded by commit 8d9f73c0ad2f (\"atm: fix a memory leak of vcc-\u003euser_back\")\nwith the same pattern, and both paths are fixed here."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-18T08:57:38.115Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/8aff65a82b6389ec674d46e5b3d3ae6f07db5e3e"
        },
        {
          "url": "https://git.kernel.org/stable/c/30c9744a989feb22cfbb84170eb0e038a7a2c1da"
        },
        {
          "url": "https://git.kernel.org/stable/c/e9665986eb127290ceb535bd5d04d7a84265d94f"
        },
        {
          "url": "https://git.kernel.org/stable/c/622062f24644b4536d3f437e0cf7a8c4bb421665"
        },
        {
          "url": "https://git.kernel.org/stable/c/2d9f57ea29a1f1772373b98a509b44d49fda609e"
        },
        {
          "url": "https://git.kernel.org/stable/c/7ea92ab075d809ec8a96669a5ecf00f752057875"
        },
        {
          "url": "https://git.kernel.org/stable/c/5f1cfea7921f5c126a441d973690eeba52677b64"
        },
        {
          "url": "https://git.kernel.org/stable/c/101bacb303e89dc2e0640ae6a5e0fb97c4eb45bb"
        }
      ],
      "title": "atm: lec: fix null-ptr-deref in lec_arp_clear_vccs",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2026-23286",
    "datePublished": "2026-03-25T10:26:45.531Z",
    "dateReserved": "2026-01-13T15:37:45.992Z",
    "dateUpdated": "2026-04-18T08:57:38.115Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CERTFR-2026-AVI-0376

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Microsoft	CBL Mariner	cbl2 telegraf 1.29.4-21 versions antérieures à 1.29.4-22
Microsoft	Azure Linux	azl3 glibc 2.38-18 versions antérieures à 2.38-19
Microsoft	Azure Linux	azl3 squid 6.13-3 versions antérieures à 6.13-4
Microsoft	Azure Linux	azl3 python-pyasn1 0.4.8-1 versions antérieures à 0.4.8-2
Microsoft	Azure Linux	azl3 nginx 1.28.2-1 versions antérieures à 1.28.3-1
Microsoft	CBL Mariner	cbl2 ncurses 6.4-3 versions antérieures à 6.4-4
Microsoft	Azure Linux	azl3 kernel 6.6.126.1-1 versions antérieures à 6.6.130.1-1
Microsoft	Azure Linux	azl3 ncurses 6.4-2 versions antérieures à 6.4-3
Microsoft	CBL Mariner	cbl2 terraform 1.3.2-29 versions antérieures à 1.3.2-30
Microsoft	Azure Linux	azl3 libsoup 3.4.4-12 versions antérieures à 3.4.4-14
Microsoft	Azure Linux	azl3 etcd 3.5.21-1 versions antérieures à 3.5.28-1

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft CVE-2026-32748	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-4438	2026-03-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23347	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23268	2026-03-20	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23392	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23319	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23253	2026-03-20	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23296	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23364	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23368	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-27654	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-30922	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23286	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23396	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23340	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23324	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33515	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23318	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23379	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23317	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-27784	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23359	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23245	2026-03-19	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23269	2026-03-20	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23298	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23304	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23370	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23100	2026-03-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23271	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23352	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33343	2026-03-28	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-4437	2026-03-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23343	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33413	2026-03-28	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23246	2026-03-19	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23279	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23244	2026-03-19	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23367	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23307	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23398	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2025-69720	2026-03-25	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-28755	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23300	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23381	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23356	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23351	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23277	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23315	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-4645	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33526	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23382	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23310	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23306	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23336	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-2369	2026-03-25	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23391	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23290	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23312	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23388	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23390	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23303	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23289	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23293	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-27651	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23291	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-28753	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23334	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-32647	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23397	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23281	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23365	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23285	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23292	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23284	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23395	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23274	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23357	2026-03-26	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "cbl2 telegraf 1.29.4-21 versions ant\u00e9rieures \u00e0 1.29.4-22",
      "product": {
        "name": "CBL Mariner",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 glibc 2.38-18 versions ant\u00e9rieures \u00e0 2.38-19",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 squid 6.13-3 versions ant\u00e9rieures \u00e0 6.13-4",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 python-pyasn1 0.4.8-1 versions ant\u00e9rieures \u00e0 0.4.8-2",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 nginx 1.28.2-1 versions ant\u00e9rieures \u00e0 1.28.3-1",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "cbl2 ncurses 6.4-3 versions ant\u00e9rieures \u00e0 6.4-4",
      "product": {
        "name": "CBL Mariner",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 kernel 6.6.126.1-1 versions ant\u00e9rieures \u00e0 6.6.130.1-1",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 ncurses 6.4-2 versions ant\u00e9rieures \u00e0 6.4-3",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "cbl2 terraform 1.3.2-29 versions ant\u00e9rieures \u00e0 1.3.2-30",
      "product": {
        "name": "CBL Mariner",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 libsoup 3.4.4-12 versions ant\u00e9rieures \u00e0 3.4.4-14",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 etcd 3.5.21-1 versions ant\u00e9rieures \u00e0 3.5.28-1",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-23318",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23318"
    },
    {
      "name": "CVE-2026-23368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23368"
    },
    {
      "name": "CVE-2026-23281",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23281"
    },
    {
      "name": "CVE-2026-32647",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-32647"
    },
    {
      "name": "CVE-2026-23269",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23269"
    },
    {
      "name": "CVE-2026-23293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23293"
    },
    {
      "name": "CVE-2026-23290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23290"
    },
    {
      "name": "CVE-2026-27651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-27651"
    },
    {
      "name": "CVE-2026-23303",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23303"
    },
    {
      "name": "CVE-2026-27654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-27654"
    },
    {
      "name": "CVE-2026-23340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23340"
    },
    {
      "name": "CVE-2026-23253",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23253"
    },
    {
      "name": "CVE-2026-33343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33343"
    },
    {
      "name": "CVE-2026-23271",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23271"
    },
    {
      "name": "CVE-2026-23268",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23268"
    },
    {
      "name": "CVE-2026-23285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23285"
    },
    {
      "name": "CVE-2026-23304",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23304"
    },
    {
      "name": "CVE-2026-23357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23357"
    },
    {
      "name": "CVE-2026-4645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4645"
    },
    {
      "name": "CVE-2026-23324",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23324"
    },
    {
      "name": "CVE-2026-23347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23347"
    },
    {
      "name": "CVE-2026-28755",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28755"
    },
    {
      "name": "CVE-2026-23317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23317"
    },
    {
      "name": "CVE-2026-23334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23334"
    },
    {
      "name": "CVE-2026-23391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23391"
    },
    {
      "name": "CVE-2026-23319",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23319"
    },
    {
      "name": "CVE-2026-23279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23279"
    },
    {
      "name": "CVE-2026-23244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23244"
    },
    {
      "name": "CVE-2026-23246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23246"
    },
    {
      "name": "CVE-2026-30922",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-30922"
    },
    {
      "name": "CVE-2026-23286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23286"
    },
    {
      "name": "CVE-2026-23359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23359"
    },
    {
      "name": "CVE-2026-23298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23298"
    },
    {
      "name": "CVE-2026-23296",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23296"
    },
    {
      "name": "CVE-2026-23396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23396"
    },
    {
      "name": "CVE-2026-23370",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23370"
    },
    {
      "name": "CVE-2026-23315",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23315"
    },
    {
      "name": "CVE-2026-23352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23352"
    },
    {
      "name": "CVE-2026-23367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23367"
    },
    {
      "name": "CVE-2026-32748",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-32748"
    },
    {
      "name": "CVE-2026-23300",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23300"
    },
    {
      "name": "CVE-2026-23379",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23379"
    },
    {
      "name": "CVE-2026-23381",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23381"
    },
    {
      "name": "CVE-2026-23392",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23392"
    },
    {
      "name": "CVE-2026-23245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23245"
    },
    {
      "name": "CVE-2026-4438",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4438"
    },
    {
      "name": "CVE-2026-23364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23364"
    },
    {
      "name": "CVE-2026-23274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23274"
    },
    {
      "name": "CVE-2026-23284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23284"
    },
    {
      "name": "CVE-2026-23397",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23397"
    },
    {
      "name": "CVE-2026-23343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23343"
    },
    {
      "name": "CVE-2026-23336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23336"
    },
    {
      "name": "CVE-2025-69720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-69720"
    },
    {
      "name": "CVE-2026-23289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23289"
    },
    {
      "name": "CVE-2026-23292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23292"
    },
    {
      "name": "CVE-2026-23277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23277"
    },
    {
      "name": "CVE-2026-4437",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4437"
    },
    {
      "name": "CVE-2026-27784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-27784"
    },
    {
      "name": "CVE-2026-23388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23388"
    },
    {
      "name": "CVE-2026-28753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28753"
    },
    {
      "name": "CVE-2026-33526",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33526"
    },
    {
      "name": "CVE-2026-23310",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23310"
    },
    {
      "name": "CVE-2026-2369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-2369"
    },
    {
      "name": "CVE-2026-33515",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33515"
    },
    {
      "name": "CVE-2026-23395",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23395"
    },
    {
      "name": "CVE-2026-23100",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23100"
    },
    {
      "name": "CVE-2026-23306",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23306"
    },
    {
      "name": "CVE-2026-33413",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33413"
    },
    {
      "name": "CVE-2026-23291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23291"
    },
    {
      "name": "CVE-2026-23382",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23382"
    },
    {
      "name": "CVE-2026-23312",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23312"
    },
    {
      "name": "CVE-2026-23365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23365"
    },
    {
      "name": "CVE-2026-23356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23356"
    },
    {
      "name": "CVE-2026-23307",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23307"
    },
    {
      "name": "CVE-2026-23398",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23398"
    },
    {
      "name": "CVE-2026-23351",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23351"
    },
    {
      "name": "CVE-2026-23390",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23390"
    }
  ],
  "initial_release_date": "2026-03-30T00:00:00",
  "last_revision_date": "2026-03-30T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0376",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-03-30T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
  "vendor_advisories": [
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-32748",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32748"
    },
    {
      "published_at": "2026-03-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-4438",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-4438"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23347",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23347"
    },
    {
      "published_at": "2026-03-20",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23268",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23268"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23392",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23392"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23319",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23319"
    },
    {
      "published_at": "2026-03-20",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23253",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23253"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23296",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23296"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23364",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23364"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23368",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23368"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-27654",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27654"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-30922",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-30922"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23286",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23286"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23396",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23396"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23340",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23340"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23324",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23324"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33515",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33515"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23318",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23318"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23379",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23379"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23317",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23317"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-27784",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27784"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23359",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23359"
    },
    {
      "published_at": "2026-03-19",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23245",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23245"
    },
    {
      "published_at": "2026-03-20",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23269",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23269"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23298",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23298"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23304",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23304"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23370",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23370"
    },
    {
      "published_at": "2026-03-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23100",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23100"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23271",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23271"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23352",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23352"
    },
    {
      "published_at": "2026-03-28",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33343",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33343"
    },
    {
      "published_at": "2026-03-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-4437",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-4437"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23343",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23343"
    },
    {
      "published_at": "2026-03-28",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33413",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33413"
    },
    {
      "published_at": "2026-03-19",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23246",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23246"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23279",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23279"
    },
    {
      "published_at": "2026-03-19",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23244",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23244"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23367",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23367"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23307",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23307"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23398",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23398"
    },
    {
      "published_at": "2026-03-25",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-69720",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-69720"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-28755",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-28755"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23300",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23300"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23381",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23381"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23356",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23356"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23351",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23351"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23277",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23277"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23315",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23315"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-4645",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-4645"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33526",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33526"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23382",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23382"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23310",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23310"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23306",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23306"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23336",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23336"
    },
    {
      "published_at": "2026-03-25",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-2369",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2369"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23391",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23391"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23290",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23290"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23312",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23312"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23388",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23388"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23390",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23390"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23303",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23303"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23289",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23289"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23293",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23293"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-27651",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27651"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23291",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23291"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-28753",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-28753"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23334",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23334"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-32647",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32647"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23397",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23397"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23281",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23281"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23365",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23365"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23285",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23285"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23292",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23292"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23284",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23284"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23395",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23395"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23274",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23274"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23357",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23357"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2026-23286 (GCVE-0-2026-23286)

Vulnerability from cvelistv5

CERTFR-2026-AVI-0376

Vulnerability from certfr_avis

Solutions

Tags

Sightings

Nomenclature