cvelistv5 - cve-2026-31698

CVE-2026-31698 (GCVE-0-2026-31698)

Vulnerability from cvelistv5

Published

2026-05-01 13:55

Modified

2026-05-03 05:45

Severity ?

7.1 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Summary

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy PDH cert to userspace if PSP command failed When retrieving the PDH cert, don't attempt to copy the blobs to userspace if the firmware command failed. If the failure was due to an invalid length, i.e. the userspace buffer+length was too small, copying the number of bytes _firmware_ requires will overflow the kernel-allocated buffer and leak data to userspace. BUG: KASAN: slab-out-of-bounds in instrument_copy_to_user ../include/linux/instrumented.h:129 [inline] BUG: KASAN: slab-out-of-bounds in _inline_copy_to_user ../include/linux/uaccess.h:205 [inline] BUG: KASAN: slab-out-of-bounds in _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26 Read of size 2084 at addr ffff8885c4ab8aa0 by task syz.0.186/21033 CPU: 51 UID: 0 PID: 21033 Comm: syz.0.186 Tainted: G U O 7.0.0-smp-DEV #28 PREEMPTLAZY Tainted: [U]=USER, [O]=OOT_MODULE Hardware name: Google, Inc. Arcadia_IT_80/Arcadia_IT_80, BIOS 34.84.12-0 11/17/2025 Call Trace: <TASK> dump_stack_lvl+0xc5/0x110 ../lib/dump_stack.c:120 print_address_description ../mm/kasan/report.c:378 [inline] print_report+0xbc/0x260 ../mm/kasan/report.c:482 kasan_report+0xa2/0xe0 ../mm/kasan/report.c:595 check_region_inline ../mm/kasan/generic.c:-1 [inline] kasan_check_range+0x264/0x2c0 ../mm/kasan/generic.c:200 instrument_copy_to_user ../include/linux/instrumented.h:129 [inline] _inline_copy_to_user ../include/linux/uaccess.h:205 [inline] _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26 copy_to_user ../include/linux/uaccess.h:236 [inline] sev_ioctl_do_pdh_export+0x3d3/0x7c0 ../drivers/crypto/ccp/sev-dev.c:2347 sev_ioctl+0x2a2/0x490 ../drivers/crypto/ccp/sev-dev.c:2568 vfs_ioctl ../fs/ioctl.c:51 [inline] __do_sys_ioctl ../fs/ioctl.c:597 [inline] __se_sys_ioctl+0x11d/0x1b0 ../fs/ioctl.c:583 do_syscall_x64 ../arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0xe0/0x800 ../arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x76/0x7e </TASK> WARN if the driver says the command succeeded, but the firmware error code says otherwise, as __sev_do_cmd_locked() is expected to return -EIO on any firwmware error.

References

URL

Tags

	https://git.kernel.org/stable/c/b5c14bd4da1f376f385722fe1da993f1edab6472
	https://git.kernel.org/stable/c/78b97e43d0b3e674d9d49ae56937b11e2ba3fcaf
	https://git.kernel.org/stable/c/051e51aa55fd4cdc3e8283cf4476aeeb5f563274
	https://git.kernel.org/stable/c/50808c13452dae43a2c90b1bbbf9daa16501ce70
	https://git.kernel.org/stable/c/e76239fed3cffd6d304d8ca3ce23984fd24f57d3

Impacted products

Vendor

Product

Version

Linux

Version: 76a2b524a4b1d6dc0f2421f9854a01d55d5e5436
Version: 76a2b524a4b1d6dc0f2421f9854a01d55d5e5436
Version: 76a2b524a4b1d6dc0f2421f9854a01d55d5e5436
Version: 76a2b524a4b1d6dc0f2421f9854a01d55d5e5436
Version: 76a2b524a4b1d6dc0f2421f9854a01d55d5e5436

Linux

Version: 4.16

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/crypto/ccp/sev-dev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "b5c14bd4da1f376f385722fe1da993f1edab6472",
              "status": "affected",
              "version": "76a2b524a4b1d6dc0f2421f9854a01d55d5e5436",
              "versionType": "git"
            },
            {
              "lessThan": "78b97e43d0b3e674d9d49ae56937b11e2ba3fcaf",
              "status": "affected",
              "version": "76a2b524a4b1d6dc0f2421f9854a01d55d5e5436",
              "versionType": "git"
            },
            {
              "lessThan": "051e51aa55fd4cdc3e8283cf4476aeeb5f563274",
              "status": "affected",
              "version": "76a2b524a4b1d6dc0f2421f9854a01d55d5e5436",
              "versionType": "git"
            },
            {
              "lessThan": "50808c13452dae43a2c90b1bbbf9daa16501ce70",
              "status": "affected",
              "version": "76a2b524a4b1d6dc0f2421f9854a01d55d5e5436",
              "versionType": "git"
            },
            {
              "lessThan": "e76239fed3cffd6d304d8ca3ce23984fd24f57d3",
              "status": "affected",
              "version": "76a2b524a4b1d6dc0f2421f9854a01d55d5e5436",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/crypto/ccp/sev-dev.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "4.16"
            },
            {
              "lessThan": "4.16",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.6.*",
              "status": "unaffected",
              "version": "6.6.136",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.12.*",
              "status": "unaffected",
              "version": "6.12.84",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.18.*",
              "status": "unaffected",
              "version": "6.18.25",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "7.0.*",
              "status": "unaffected",
              "version": "7.0.2",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "7.1-rc1",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6.136",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.12.84",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.18.25",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.0.2",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "7.1-rc1",
                  "versionStartIncluding": "4.16",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ncrypto: ccp: Don\u0027t attempt to copy PDH cert to userspace if PSP command failed\n\nWhen retrieving the PDH cert, don\u0027t attempt to copy the blobs to userspace\nif the firmware command failed.  If the failure was due to an invalid\nlength, i.e. the userspace buffer+length was too small, copying the number\nof bytes _firmware_ requires will overflow the kernel-allocated buffer and\nleak data to userspace.\n\n  BUG: KASAN: slab-out-of-bounds in instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n  BUG: KASAN: slab-out-of-bounds in _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n  BUG: KASAN: slab-out-of-bounds in _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n  Read of size 2084 at addr ffff8885c4ab8aa0 by task syz.0.186/21033\n\n  CPU: 51 UID: 0 PID: 21033 Comm: syz.0.186 Tainted: G     U     O        7.0.0-smp-DEV #28 PREEMPTLAZY\n  Tainted: [U]=USER, [O]=OOT_MODULE\n  Hardware name: Google, Inc.                                                       Arcadia_IT_80/Arcadia_IT_80, BIOS 34.84.12-0 11/17/2025\n  Call Trace:\n   \u003cTASK\u003e\n   dump_stack_lvl+0xc5/0x110 ../lib/dump_stack.c:120\n   print_address_description ../mm/kasan/report.c:378 [inline]\n   print_report+0xbc/0x260 ../mm/kasan/report.c:482\n   kasan_report+0xa2/0xe0 ../mm/kasan/report.c:595\n   check_region_inline ../mm/kasan/generic.c:-1 [inline]\n   kasan_check_range+0x264/0x2c0 ../mm/kasan/generic.c:200\n   instrument_copy_to_user ../include/linux/instrumented.h:129 [inline]\n   _inline_copy_to_user ../include/linux/uaccess.h:205 [inline]\n   _copy_to_user+0x66/0xa0 ../lib/usercopy.c:26\n   copy_to_user ../include/linux/uaccess.h:236 [inline]\n   sev_ioctl_do_pdh_export+0x3d3/0x7c0 ../drivers/crypto/ccp/sev-dev.c:2347\n   sev_ioctl+0x2a2/0x490 ../drivers/crypto/ccp/sev-dev.c:2568\n   vfs_ioctl ../fs/ioctl.c:51 [inline]\n   __do_sys_ioctl ../fs/ioctl.c:597 [inline]\n   __se_sys_ioctl+0x11d/0x1b0 ../fs/ioctl.c:583\n   do_syscall_x64 ../arch/x86/entry/syscall_64.c:63 [inline]\n   do_syscall_64+0xe0/0x800 ../arch/x86/entry/syscall_64.c:94\n   entry_SYSCALL_64_after_hwframe+0x76/0x7e\n   \u003c/TASK\u003e\n\nWARN if the driver says the command succeeded, but the firmware error code\nsays otherwise, as __sev_do_cmd_locked() is expected to return -EIO on any\nfirwmware error."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-03T05:45:23.344Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/b5c14bd4da1f376f385722fe1da993f1edab6472"
        },
        {
          "url": "https://git.kernel.org/stable/c/78b97e43d0b3e674d9d49ae56937b11e2ba3fcaf"
        },
        {
          "url": "https://git.kernel.org/stable/c/051e51aa55fd4cdc3e8283cf4476aeeb5f563274"
        },
        {
          "url": "https://git.kernel.org/stable/c/50808c13452dae43a2c90b1bbbf9daa16501ce70"
        },
        {
          "url": "https://git.kernel.org/stable/c/e76239fed3cffd6d304d8ca3ce23984fd24f57d3"
        }
      ],
      "title": "crypto: ccp: Don\u0027t attempt to copy PDH cert to userspace if PSP command failed",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2026-31698",
    "datePublished": "2026-05-01T13:55:58.854Z",
    "dateReserved": "2026-03-09T15:48:24.131Z",
    "dateUpdated": "2026-05-03T05:45:23.344Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CERTFR-2026-AVI-0526

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

	Vendor	Product	Description
	Microsoft	N/A	azl3 kernel versions antérieures à 6.6.137.1-1

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft CVE-2026-31629	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31639	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31694	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31662	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31651	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31661	2026-04-29	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31671	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31656	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31595	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31700	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31430	2026-04-22	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31599	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31685	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31607	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31659	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31673	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31612	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31638	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31532	2026-04-24	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31625	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31586	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31649	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31676	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31684	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31657	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31431	2026-04-23	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31585	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31611	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31637	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31689	2026-04-29	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31624	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31615	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31627	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31642	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31704	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31668	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31508	2026-04-30	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31578	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31696	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31587	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31577	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31711	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31626	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31670	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31583	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31618	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31708	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31588	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31658	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31705	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31669	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31623	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31622	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31603	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31594	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31721	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31660	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31628	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-43033	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31619	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31648	2026-04-29	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31698	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31655	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31699	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31634	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31665	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31605	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31597	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31697	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31664	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31702	2026-05-02	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31590	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31596	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31681	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31533	2026-05-01	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31610	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31667	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31604	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31672	2026-04-26	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31646	2026-04-26	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "azl3 kernel versions ant\u00e9rieures \u00e0 6.6.137.1-1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-31623",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31623"
    },
    {
      "name": "CVE-2026-31619",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31619"
    },
    {
      "name": "CVE-2026-31658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31658"
    },
    {
      "name": "CVE-2026-31618",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31618"
    },
    {
      "name": "CVE-2026-31578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31578"
    },
    {
      "name": "CVE-2026-31696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31696"
    },
    {
      "name": "CVE-2026-31704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31704"
    },
    {
      "name": "CVE-2026-31685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31685"
    },
    {
      "name": "CVE-2026-31656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31656"
    },
    {
      "name": "CVE-2026-31698",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31698"
    },
    {
      "name": "CVE-2026-31664",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31664"
    },
    {
      "name": "CVE-2026-31597",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31597"
    },
    {
      "name": "CVE-2026-31586",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31586"
    },
    {
      "name": "CVE-2026-31721",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31721"
    },
    {
      "name": "CVE-2026-31655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31655"
    },
    {
      "name": "CVE-2026-31711",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31711"
    },
    {
      "name": "CVE-2026-31611",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31611"
    },
    {
      "name": "CVE-2026-31431",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31431"
    },
    {
      "name": "CVE-2026-31599",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31599"
    },
    {
      "name": "CVE-2026-31668",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31668"
    },
    {
      "name": "CVE-2026-31583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31583"
    },
    {
      "name": "CVE-2026-31605",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31605"
    },
    {
      "name": "CVE-2026-31681",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31681"
    },
    {
      "name": "CVE-2026-43033",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-43033"
    },
    {
      "name": "CVE-2026-31622",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31622"
    },
    {
      "name": "CVE-2026-31595",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31595"
    },
    {
      "name": "CVE-2026-31642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31642"
    },
    {
      "name": "CVE-2026-31659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31659"
    },
    {
      "name": "CVE-2026-31638",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31638"
    },
    {
      "name": "CVE-2026-31588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31588"
    },
    {
      "name": "CVE-2026-31689",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31689"
    },
    {
      "name": "CVE-2026-31697",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31697"
    },
    {
      "name": "CVE-2026-31670",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31670"
    },
    {
      "name": "CVE-2026-31533",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31533"
    },
    {
      "name": "CVE-2026-31615",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31615"
    },
    {
      "name": "CVE-2026-31594",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31594"
    },
    {
      "name": "CVE-2026-31661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31661"
    },
    {
      "name": "CVE-2026-31705",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31705"
    },
    {
      "name": "CVE-2026-31684",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31684"
    },
    {
      "name": "CVE-2026-31625",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31625"
    },
    {
      "name": "CVE-2026-31669",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31669"
    },
    {
      "name": "CVE-2026-31671",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31671"
    },
    {
      "name": "CVE-2026-31694",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31694"
    },
    {
      "name": "CVE-2026-31699",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31699"
    },
    {
      "name": "CVE-2026-31628",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31628"
    },
    {
      "name": "CVE-2026-31662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31662"
    },
    {
      "name": "CVE-2026-31627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31627"
    },
    {
      "name": "CVE-2026-31665",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31665"
    },
    {
      "name": "CVE-2026-31672",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31672"
    },
    {
      "name": "CVE-2026-31626",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31626"
    },
    {
      "name": "CVE-2026-31634",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31634"
    },
    {
      "name": "CVE-2026-31610",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31610"
    },
    {
      "name": "CVE-2026-31648",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31648"
    },
    {
      "name": "CVE-2026-31660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31660"
    },
    {
      "name": "CVE-2026-31607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31607"
    },
    {
      "name": "CVE-2026-31637",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31637"
    },
    {
      "name": "CVE-2026-31612",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31612"
    },
    {
      "name": "CVE-2026-31590",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31590"
    },
    {
      "name": "CVE-2026-31604",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31604"
    },
    {
      "name": "CVE-2026-31532",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31532"
    },
    {
      "name": "CVE-2026-31430",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31430"
    },
    {
      "name": "CVE-2026-31596",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31596"
    },
    {
      "name": "CVE-2026-31676",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31676"
    },
    {
      "name": "CVE-2026-31603",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31603"
    },
    {
      "name": "CVE-2026-31649",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31649"
    },
    {
      "name": "CVE-2026-31577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31577"
    },
    {
      "name": "CVE-2026-31702",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31702"
    },
    {
      "name": "CVE-2026-31587",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31587"
    },
    {
      "name": "CVE-2026-31708",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31708"
    },
    {
      "name": "CVE-2026-31651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31651"
    },
    {
      "name": "CVE-2026-31657",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31657"
    },
    {
      "name": "CVE-2026-31624",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31624"
    },
    {
      "name": "CVE-2026-31585",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31585"
    },
    {
      "name": "CVE-2026-31646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31646"
    },
    {
      "name": "CVE-2026-31700",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31700"
    },
    {
      "name": "CVE-2026-31639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31639"
    },
    {
      "name": "CVE-2026-31508",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31508"
    },
    {
      "name": "CVE-2026-31629",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31629"
    },
    {
      "name": "CVE-2026-31673",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31673"
    },
    {
      "name": "CVE-2026-31667",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31667"
    }
  ],
  "initial_release_date": "2026-05-04T00:00:00",
  "last_revision_date": "2026-05-04T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0526",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-05-04T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
  "vendor_advisories": [
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31629",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31629"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31639",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31639"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31694",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31694"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31662",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31662"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31651",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31651"
    },
    {
      "published_at": "2026-04-29",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31661",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31661"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31671",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31671"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31656",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31656"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31595",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31595"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31700",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31700"
    },
    {
      "published_at": "2026-04-22",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31430",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31430"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31599",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31599"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31685",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31685"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31607",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31607"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31659",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31659"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31673",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31673"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31612",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31612"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31638",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31638"
    },
    {
      "published_at": "2026-04-24",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31532",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31532"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31625",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31625"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31586",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31586"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31649",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31649"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31676",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31676"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31684",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31684"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31657",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31657"
    },
    {
      "published_at": "2026-04-23",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31431",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31431"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31585",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31585"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31611",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31611"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31637",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31637"
    },
    {
      "published_at": "2026-04-29",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31689",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31689"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31624",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31624"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31615",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31615"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31627",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31627"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31642",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31642"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31704",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31704"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31668",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31668"
    },
    {
      "published_at": "2026-04-30",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31508",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31508"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31578",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31578"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31696",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31696"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31587",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31587"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31577",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31577"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31711",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31711"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31626",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31626"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31670",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31670"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31583",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31583"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31618",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31618"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31708",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31708"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31588",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31588"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31658",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31658"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31705",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31705"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31669",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31669"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31623",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31623"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31622",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31622"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31603",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31603"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31594",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31594"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31721",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31721"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31660",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31660"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31628",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31628"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-43033",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-43033"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31619",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31619"
    },
    {
      "published_at": "2026-04-29",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31648",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31648"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31698",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31698"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31655",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31655"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31699",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31699"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31634",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31634"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31665",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31665"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31605",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31605"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31597",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31597"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31697",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31697"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31664",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31664"
    },
    {
      "published_at": "2026-05-02",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31702",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31702"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31590",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31590"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31596",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31596"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31681",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31681"
    },
    {
      "published_at": "2026-05-01",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31533",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31533"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31610",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31610"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31667",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31667"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31604",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31604"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31672",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31672"
    },
    {
      "published_at": "2026-04-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31646",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31646"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2026-31698 (GCVE-0-2026-31698)

Vulnerability from cvelistv5

CERTFR-2026-AVI-0526

Vulnerability from certfr_avis

Solutions

Tags

Sightings

Nomenclature