cvelistv5 - cve-2026-23398

CVE-2026-23398 (GCVE-0-2026-23398)

Vulnerability from cvelistv5

Published

2026-03-26 10:22

Modified

2026-04-18 08:58

Severity ?

Summary

In the Linux kernel, the following vulnerability has been resolved: icmp: fix NULL pointer dereference in icmp_tag_validation() icmp_tag_validation() unconditionally dereferences the result of rcu_dereference(inet_protos[proto]) without checking for NULL. The inet_protos[] array is sparse -- only about 15 of 256 protocol numbers have registered handlers. When ip_no_pmtu_disc is set to 3 (hardened PMTU mode) and the kernel receives an ICMP Fragmentation Needed error with a quoted inner IP header containing an unregistered protocol number, the NULL dereference causes a kernel panic in softirq context. Oops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] SMP KASAN NOPTI KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017] RIP: 0010:icmp_unreach (net/ipv4/icmp.c:1085 net/ipv4/icmp.c:1143) Call Trace: <IRQ> icmp_rcv (net/ipv4/icmp.c:1527) ip_protocol_deliver_rcu (net/ipv4/ip_input.c:207) ip_local_deliver_finish (net/ipv4/ip_input.c:242) ip_local_deliver (net/ipv4/ip_input.c:262) ip_rcv (net/ipv4/ip_input.c:573) __netif_receive_skb_one_core (net/core/dev.c:6164) process_backlog (net/core/dev.c:6628) handle_softirqs (kernel/softirq.c:561) </IRQ> Add a NULL check before accessing icmp_strict_tag_validation. If the protocol has no registered handler, return false since it cannot perform strict tag validation.

References

URL

Tags

	https://git.kernel.org/stable/c/571d9d7b650f02d1e38c01128817868bceac9edd
	https://git.kernel.org/stable/c/d783fa413c702ff0f8f8bea63f862e28eeaf39e3
	https://git.kernel.org/stable/c/1f9f2c6d4b2a613b7756fc5679c5116ba2ca0161
	https://git.kernel.org/stable/c/b61529c357f1ee4d64836eb142a542d2e7ad67ce
	https://git.kernel.org/stable/c/9647e99d2a617c355d2b378be0ff6d0e848fd579
	https://git.kernel.org/stable/c/d938dd5a0ad780c891ea3bc94cae7405f11e618a
	https://git.kernel.org/stable/c/1e4e2f5e48cec0cccaea9815fb9486c084ba41e2
	https://git.kernel.org/stable/c/614aefe56af8e13331e50220c936fc0689cf5675

Impacted products

Vendor

Product

Version

Linux

Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e
Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e
Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e
Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e
Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e
Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e
Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e
Version: 8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e

Linux

Version: 3.14

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/icmp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "571d9d7b650f02d1e38c01128817868bceac9edd",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            },
            {
              "lessThan": "d783fa413c702ff0f8f8bea63f862e28eeaf39e3",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            },
            {
              "lessThan": "1f9f2c6d4b2a613b7756fc5679c5116ba2ca0161",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            },
            {
              "lessThan": "b61529c357f1ee4d64836eb142a542d2e7ad67ce",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            },
            {
              "lessThan": "9647e99d2a617c355d2b378be0ff6d0e848fd579",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            },
            {
              "lessThan": "d938dd5a0ad780c891ea3bc94cae7405f11e618a",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            },
            {
              "lessThan": "1e4e2f5e48cec0cccaea9815fb9486c084ba41e2",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            },
            {
              "lessThan": "614aefe56af8e13331e50220c936fc0689cf5675",
              "status": "affected",
              "version": "8ed1dc44d3e9e8387a104b1ae8f92e9a3fbf1b1e",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "net/ipv4/icmp.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.14"
            },
            {
              "lessThan": "3.14",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.253",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.203",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.167",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.130",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.78",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.20",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.19.*",
              "status": "unaffected",
              "version": "6.19.10",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.0",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.253",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.203",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.167",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.130",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.78",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.20",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.19.10",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0",
                  "versionStartIncluding": "3.14",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nicmp: fix NULL pointer dereference in icmp_tag_validation()\n\nicmp_tag_validation() unconditionally dereferences the result of\nrcu_dereference(inet_protos[proto]) without checking for NULL.\nThe inet_protos[] array is sparse -- only about 15 of 256 protocol\nnumbers have registered handlers. When ip_no_pmtu_disc is set to 3\n(hardened PMTU mode) and the kernel receives an ICMP Fragmentation\nNeeded error with a quoted inner IP header containing an unregistered\nprotocol number, the NULL dereference causes a kernel panic in\nsoftirq context.\n\n Oops: general protection fault, probably for non-canonical address 0xdffffc0000000002: 0000 [#1] SMP KASAN NOPTI\n KASAN: null-ptr-deref in range [0x0000000000000010-0x0000000000000017]\n RIP: 0010:icmp_unreach (net/ipv4/icmp.c:1085 net/ipv4/icmp.c:1143)\n Call Trace:\n  \u003cIRQ\u003e\n  icmp_rcv (net/ipv4/icmp.c:1527)\n  ip_protocol_deliver_rcu (net/ipv4/ip_input.c:207)\n  ip_local_deliver_finish (net/ipv4/ip_input.c:242)\n  ip_local_deliver (net/ipv4/ip_input.c:262)\n  ip_rcv (net/ipv4/ip_input.c:573)\n  __netif_receive_skb_one_core (net/core/dev.c:6164)\n  process_backlog (net/core/dev.c:6628)\n  handle_softirqs (kernel/softirq.c:561)\n  \u003c/IRQ\u003e\n\nAdd a NULL check before accessing icmp_strict_tag_validation. If the\nprotocol has no registered handler, return false since it cannot\nperform strict tag validation."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-18T08:58:33.834Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/571d9d7b650f02d1e38c01128817868bceac9edd"
        },
        {
          "url": "https://git.kernel.org/stable/c/d783fa413c702ff0f8f8bea63f862e28eeaf39e3"
        },
        {
          "url": "https://git.kernel.org/stable/c/1f9f2c6d4b2a613b7756fc5679c5116ba2ca0161"
        },
        {
          "url": "https://git.kernel.org/stable/c/b61529c357f1ee4d64836eb142a542d2e7ad67ce"
        },
        {
          "url": "https://git.kernel.org/stable/c/9647e99d2a617c355d2b378be0ff6d0e848fd579"
        },
        {
          "url": "https://git.kernel.org/stable/c/d938dd5a0ad780c891ea3bc94cae7405f11e618a"
        },
        {
          "url": "https://git.kernel.org/stable/c/1e4e2f5e48cec0cccaea9815fb9486c084ba41e2"
        },
        {
          "url": "https://git.kernel.org/stable/c/614aefe56af8e13331e50220c936fc0689cf5675"
        }
      ],
      "title": "icmp: fix NULL pointer dereference in icmp_tag_validation()",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2026-23398",
    "datePublished": "2026-03-26T10:22:50.606Z",
    "dateReserved": "2026-01-13T15:37:46.012Z",
    "dateUpdated": "2026-04-18T08:58:33.834Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CERTFR-2026-AVI-0454

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans le noyau Linux de SUSE. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	N/A	SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE	N/A	SUSE Linux Enterprise Micro 5.3
SUSE	N/A	SUSE Linux Enterprise Real Time 15 SP7
SUSE	N/A	SUSE Linux Enterprise Micro for Rancher 5.2
SUSE	N/A	SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE	N/A	SUSE Linux Enterprise Server 12 SP5
SUSE	N/A	SUSE Linux Enterprise Live Patching 15-SP4
SUSE	N/A	openSUSE Leap 15.4
SUSE	N/A	SUSE Linux Enterprise Server for SAP Applications 15 SP4
SUSE	N/A	SUSE Linux Enterprise Server for SAP Applications 15 SP7
SUSE	N/A	openSUSE Leap 15.5
SUSE	N/A	SUSE Linux Enterprise High Performance Computing 15 SP4
SUSE	N/A	SUSE Linux Enterprise Live Patching 15-SP6
SUSE	N/A	SUSE Linux Enterprise Server 15 SP5
SUSE	N/A	SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE	N/A	SUSE Linux Enterprise Real Time 15 SP5
SUSE	N/A	SUSE Linux Enterprise Live Patching 12-SP5
SUSE	N/A	SUSE Linux Micro 6.2
SUSE	N/A	SUSE Linux Enterprise Server 15 SP7
SUSE	N/A	SUSE Linux Enterprise Live Patching 15-SP7
SUSE	N/A	SUSE Linux Enterprise Live Patching 15-SP5
SUSE	N/A	SUSE Linux Enterprise Micro 5.2
SUSE	N/A	SUSE Linux Enterprise Real Time 15 SP6
SUSE	N/A	openSUSE Leap 15.6
SUSE	N/A	SUSE Linux Enterprise Server 15 SP4
SUSE	N/A	SUSE Linux Enterprise Real Time 15 SP4
SUSE	N/A	SUSE Linux Enterprise Server for SAP Applications 12 SP5
SUSE	N/A	SUSE Linux Enterprise Micro 5.4
SUSE	N/A	openSUSE Leap 15.3
SUSE	N/A	SUSE Linux Enterprise Server for SAP Applications 15 SP6
SUSE	N/A	SUSE Linux Enterprise Server 15 SP6
SUSE	N/A	SUSE Linux Enterprise Micro 5.5

References

Title

Publication Time

Tags

Bulletin de sécurité SUSE SUSE-SU-2026:1342-1	2026-04-15	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1294-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1268-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1288-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1266-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1265-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1304-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1244-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:21100-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:21020-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1259-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1270-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1297-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1284-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1285-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1254-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:21102-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1281-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1305-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1263-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1280-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1242-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1248-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1262-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1272-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1258-1	2026-04-10	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:21099-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1283-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1298-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1271-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1269-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1287-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1293-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1278-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1274-1	2026-04-11	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1279-1	2026-04-12	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:21098-1	2026-04-13	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2026:1261-1	2026-04-10	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise High Performance Computing 15 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro 5.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Real Time 15 SP7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro for Rancher 5.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Performance Computing 12 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 12 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 15-SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "openSUSE Leap 15.4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "openSUSE Leap 15.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Performance Computing 15 SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 15-SP6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Real Time 15 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 12-SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Micro 6.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 15-SP7",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 15-SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro 5.2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Real Time 15 SP6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "openSUSE Leap 15.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Real Time 15 SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro 5.4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "openSUSE Leap 15.3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 15 SP6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Micro 5.5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-39973",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-39973"
    },
    {
      "name": "CVE-2026-23293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23293"
    },
    {
      "name": "CVE-2026-23209",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23209"
    },
    {
      "name": "CVE-2025-38234",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-38234"
    },
    {
      "name": "CVE-2026-23103",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23103"
    },
    {
      "name": "CVE-2026-23074",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23074"
    },
    {
      "name": "CVE-2026-22999",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-22999"
    },
    {
      "name": "CVE-2026-23243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23243"
    },
    {
      "name": "CVE-2026-23274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23274"
    },
    {
      "name": "CVE-2025-40018",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40018"
    },
    {
      "name": "CVE-2026-23272",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23272"
    },
    {
      "name": "CVE-2025-71120",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-71120"
    },
    {
      "name": "CVE-2026-23111",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23111"
    },
    {
      "name": "CVE-2023-53794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-53794"
    },
    {
      "name": "CVE-2026-23398",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23398"
    },
    {
      "name": "CVE-2025-40159",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-40159"
    }
  ],
  "initial_release_date": "2026-04-17T00:00:00",
  "last_revision_date": "2026-04-17T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0454",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-04-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de SUSE. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
  "vendor_advisories": [
    {
      "published_at": "2026-04-15",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1342-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261342-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1294-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261294-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1268-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261268-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1288-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261288-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1266-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261266-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1265-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261265-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1304-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261304-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1244-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261244-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21100-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621100-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21020-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621020-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1259-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261259-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1270-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261270-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1297-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261297-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1284-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261284-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1285-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261285-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1254-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261254-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21102-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621102-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1281-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261281-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1305-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261305-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1263-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261263-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1280-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261280-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1242-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261242-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1248-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261248-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1262-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261262-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1272-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261272-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1258-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261258-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21099-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621099-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1283-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261283-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1298-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261298-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1271-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261271-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1269-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261269-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1287-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261287-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1293-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261293-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1278-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261278-1"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1274-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261274-1"
    },
    {
      "published_at": "2026-04-12",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1279-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261279-1"
    },
    {
      "published_at": "2026-04-13",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:21098-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621098-1"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2026:1261-1",
      "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261261-1"
    }
  ]
}

CERTFR-2026-AVI-0376

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Microsoft	CBL Mariner	cbl2 telegraf 1.29.4-21 versions antérieures à 1.29.4-22
Microsoft	Azure Linux	azl3 glibc 2.38-18 versions antérieures à 2.38-19
Microsoft	Azure Linux	azl3 squid 6.13-3 versions antérieures à 6.13-4
Microsoft	Azure Linux	azl3 python-pyasn1 0.4.8-1 versions antérieures à 0.4.8-2
Microsoft	Azure Linux	azl3 nginx 1.28.2-1 versions antérieures à 1.28.3-1
Microsoft	CBL Mariner	cbl2 ncurses 6.4-3 versions antérieures à 6.4-4
Microsoft	Azure Linux	azl3 kernel 6.6.126.1-1 versions antérieures à 6.6.130.1-1
Microsoft	Azure Linux	azl3 ncurses 6.4-2 versions antérieures à 6.4-3
Microsoft	CBL Mariner	cbl2 terraform 1.3.2-29 versions antérieures à 1.3.2-30
Microsoft	Azure Linux	azl3 libsoup 3.4.4-12 versions antérieures à 3.4.4-14
Microsoft	Azure Linux	azl3 etcd 3.5.21-1 versions antérieures à 3.5.28-1

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft CVE-2026-32748	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-4438	2026-03-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23347	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23268	2026-03-20	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23392	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23319	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23253	2026-03-20	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23296	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23364	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23368	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-27654	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-30922	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23286	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23396	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23340	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23324	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33515	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23318	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23379	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23317	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-27784	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23359	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23245	2026-03-19	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23269	2026-03-20	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23298	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23304	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23370	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23100	2026-03-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23271	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23352	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33343	2026-03-28	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-4437	2026-03-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23343	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33413	2026-03-28	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23246	2026-03-19	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23279	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23244	2026-03-19	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23367	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23307	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23398	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2025-69720	2026-03-25	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-28755	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23300	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23381	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23356	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23351	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23277	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23315	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-4645	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-33526	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23382	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23310	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23306	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23336	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-2369	2026-03-25	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23391	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23290	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23312	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23388	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23390	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23303	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23289	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23293	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-27651	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23291	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-28753	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23334	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-32647	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23397	2026-03-27	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23281	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23365	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23285	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23292	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23284	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23395	2026-03-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23274	2026-03-21	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-23357	2026-03-26	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "cbl2 telegraf 1.29.4-21 versions ant\u00e9rieures \u00e0 1.29.4-22",
      "product": {
        "name": "CBL Mariner",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 glibc 2.38-18 versions ant\u00e9rieures \u00e0 2.38-19",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 squid 6.13-3 versions ant\u00e9rieures \u00e0 6.13-4",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 python-pyasn1 0.4.8-1 versions ant\u00e9rieures \u00e0 0.4.8-2",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 nginx 1.28.2-1 versions ant\u00e9rieures \u00e0 1.28.3-1",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "cbl2 ncurses 6.4-3 versions ant\u00e9rieures \u00e0 6.4-4",
      "product": {
        "name": "CBL Mariner",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 kernel 6.6.126.1-1 versions ant\u00e9rieures \u00e0 6.6.130.1-1",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 ncurses 6.4-2 versions ant\u00e9rieures \u00e0 6.4-3",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "cbl2 terraform 1.3.2-29 versions ant\u00e9rieures \u00e0 1.3.2-30",
      "product": {
        "name": "CBL Mariner",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 libsoup 3.4.4-12 versions ant\u00e9rieures \u00e0 3.4.4-14",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 etcd 3.5.21-1 versions ant\u00e9rieures \u00e0 3.5.28-1",
      "product": {
        "name": "Azure Linux",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-23318",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23318"
    },
    {
      "name": "CVE-2026-23368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23368"
    },
    {
      "name": "CVE-2026-23281",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23281"
    },
    {
      "name": "CVE-2026-32647",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-32647"
    },
    {
      "name": "CVE-2026-23269",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23269"
    },
    {
      "name": "CVE-2026-23293",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23293"
    },
    {
      "name": "CVE-2026-23290",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23290"
    },
    {
      "name": "CVE-2026-27651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-27651"
    },
    {
      "name": "CVE-2026-23303",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23303"
    },
    {
      "name": "CVE-2026-27654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-27654"
    },
    {
      "name": "CVE-2026-23340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23340"
    },
    {
      "name": "CVE-2026-23253",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23253"
    },
    {
      "name": "CVE-2026-33343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33343"
    },
    {
      "name": "CVE-2026-23271",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23271"
    },
    {
      "name": "CVE-2026-23268",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23268"
    },
    {
      "name": "CVE-2026-23285",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23285"
    },
    {
      "name": "CVE-2026-23304",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23304"
    },
    {
      "name": "CVE-2026-23357",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23357"
    },
    {
      "name": "CVE-2026-4645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4645"
    },
    {
      "name": "CVE-2026-23324",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23324"
    },
    {
      "name": "CVE-2026-23347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23347"
    },
    {
      "name": "CVE-2026-28755",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28755"
    },
    {
      "name": "CVE-2026-23317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23317"
    },
    {
      "name": "CVE-2026-23334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23334"
    },
    {
      "name": "CVE-2026-23391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23391"
    },
    {
      "name": "CVE-2026-23319",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23319"
    },
    {
      "name": "CVE-2026-23279",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23279"
    },
    {
      "name": "CVE-2026-23244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23244"
    },
    {
      "name": "CVE-2026-23246",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23246"
    },
    {
      "name": "CVE-2026-30922",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-30922"
    },
    {
      "name": "CVE-2026-23286",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23286"
    },
    {
      "name": "CVE-2026-23359",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23359"
    },
    {
      "name": "CVE-2026-23298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23298"
    },
    {
      "name": "CVE-2026-23296",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23296"
    },
    {
      "name": "CVE-2026-23396",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23396"
    },
    {
      "name": "CVE-2026-23370",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23370"
    },
    {
      "name": "CVE-2026-23315",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23315"
    },
    {
      "name": "CVE-2026-23352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23352"
    },
    {
      "name": "CVE-2026-23367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23367"
    },
    {
      "name": "CVE-2026-32748",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-32748"
    },
    {
      "name": "CVE-2026-23300",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23300"
    },
    {
      "name": "CVE-2026-23379",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23379"
    },
    {
      "name": "CVE-2026-23381",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23381"
    },
    {
      "name": "CVE-2026-23392",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23392"
    },
    {
      "name": "CVE-2026-23245",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23245"
    },
    {
      "name": "CVE-2026-4438",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4438"
    },
    {
      "name": "CVE-2026-23364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23364"
    },
    {
      "name": "CVE-2026-23274",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23274"
    },
    {
      "name": "CVE-2026-23284",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23284"
    },
    {
      "name": "CVE-2026-23397",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23397"
    },
    {
      "name": "CVE-2026-23343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23343"
    },
    {
      "name": "CVE-2026-23336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23336"
    },
    {
      "name": "CVE-2025-69720",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-69720"
    },
    {
      "name": "CVE-2026-23289",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23289"
    },
    {
      "name": "CVE-2026-23292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23292"
    },
    {
      "name": "CVE-2026-23277",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23277"
    },
    {
      "name": "CVE-2026-4437",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-4437"
    },
    {
      "name": "CVE-2026-27784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-27784"
    },
    {
      "name": "CVE-2026-23388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23388"
    },
    {
      "name": "CVE-2026-28753",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28753"
    },
    {
      "name": "CVE-2026-33526",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33526"
    },
    {
      "name": "CVE-2026-23310",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23310"
    },
    {
      "name": "CVE-2026-2369",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-2369"
    },
    {
      "name": "CVE-2026-33515",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33515"
    },
    {
      "name": "CVE-2026-23395",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23395"
    },
    {
      "name": "CVE-2026-23100",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23100"
    },
    {
      "name": "CVE-2026-23306",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23306"
    },
    {
      "name": "CVE-2026-33413",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-33413"
    },
    {
      "name": "CVE-2026-23291",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23291"
    },
    {
      "name": "CVE-2026-23382",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23382"
    },
    {
      "name": "CVE-2026-23312",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23312"
    },
    {
      "name": "CVE-2026-23365",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23365"
    },
    {
      "name": "CVE-2026-23356",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23356"
    },
    {
      "name": "CVE-2026-23307",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23307"
    },
    {
      "name": "CVE-2026-23398",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23398"
    },
    {
      "name": "CVE-2026-23351",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23351"
    },
    {
      "name": "CVE-2026-23390",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-23390"
    }
  ],
  "initial_release_date": "2026-03-30T00:00:00",
  "last_revision_date": "2026-03-30T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0376",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-03-30T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
  "vendor_advisories": [
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-32748",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32748"
    },
    {
      "published_at": "2026-03-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-4438",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-4438"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23347",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23347"
    },
    {
      "published_at": "2026-03-20",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23268",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23268"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23392",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23392"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23319",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23319"
    },
    {
      "published_at": "2026-03-20",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23253",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23253"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23296",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23296"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23364",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23364"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23368",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23368"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-27654",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27654"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-30922",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-30922"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23286",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23286"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23396",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23396"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23340",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23340"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23324",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23324"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33515",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33515"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23318",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23318"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23379",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23379"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23317",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23317"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-27784",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27784"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23359",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23359"
    },
    {
      "published_at": "2026-03-19",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23245",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23245"
    },
    {
      "published_at": "2026-03-20",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23269",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23269"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23298",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23298"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23304",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23304"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23370",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23370"
    },
    {
      "published_at": "2026-03-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23100",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23100"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23271",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23271"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23352",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23352"
    },
    {
      "published_at": "2026-03-28",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33343",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33343"
    },
    {
      "published_at": "2026-03-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-4437",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-4437"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23343",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23343"
    },
    {
      "published_at": "2026-03-28",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33413",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33413"
    },
    {
      "published_at": "2026-03-19",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23246",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23246"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23279",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23279"
    },
    {
      "published_at": "2026-03-19",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23244",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23244"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23367",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23367"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23307",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23307"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23398",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23398"
    },
    {
      "published_at": "2026-03-25",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2025-69720",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-69720"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-28755",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-28755"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23300",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23300"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23381",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23381"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23356",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23356"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23351",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23351"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23277",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23277"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23315",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23315"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-4645",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-4645"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-33526",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33526"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23382",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23382"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23310",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23310"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23306",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23306"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23336",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23336"
    },
    {
      "published_at": "2026-03-25",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-2369",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-2369"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23391",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23391"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23290",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23290"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23312",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23312"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23388",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23388"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23390",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23390"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23303",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23303"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23289",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23289"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23293",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23293"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-27651",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-27651"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23291",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23291"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-28753",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-28753"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23334",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23334"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-32647",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32647"
    },
    {
      "published_at": "2026-03-27",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23397",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23397"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23281",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23281"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23365",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23365"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23285",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23285"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23292",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23292"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23284",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23284"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23395",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23395"
    },
    {
      "published_at": "2026-03-21",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23274",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23274"
    },
    {
      "published_at": "2026-03-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-23357",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23357"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2026-23398 (GCVE-0-2026-23398)

Vulnerability from cvelistv5

CERTFR-2026-AVI-0454

Vulnerability from certfr_avis

Solutions

CERTFR-2026-AVI-0376

Vulnerability from certfr_avis

Solutions

Tags

Sightings

Nomenclature