cvelistv5 - cve-2026-31789

CVE-2026-31789 (GCVE-0-2026-31789)

Vulnerability from cvelistv5

Published

2026-04-07 22:00

Modified

2026-04-13 13:04

Severity ?

CWE

CWE-787 - Out-of-bounds Write

Summary

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker can supply a crafted X.509 certificate with an excessively large OCTET STRING value in extensions such as the Subject Key Identifier (SKID) or Authority Key Identifier (AKID) which are being converted to hex, the size of the buffer needed for the result is calculated as multiplication of the input length by 3. On 32 bit platforms, this multiplication may overflow resulting in the allocation of a smaller buffer and a heap buffer overflow. Applications and services that print or log contents of untrusted X.509 certificates are vulnerable to this issue. As the certificates would have to have sizes of over 1 Gigabyte, printing or logging such certificates is a fairly unlikely operation and only 32 bit platforms are affected, this issue was assigned Low severity. The FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this issue, as the affected code is outside the OpenSSL FIPS module boundary.

References

URL

Tags

	https://openssl-library.org/news/secadv/20260407.txt	vendor-advisory
	https://github.com/openssl/openssl/commit/a24216018e1ede8ff01a4ff5afff7dfbd443e2f9	patch
	https://github.com/openssl/openssl/commit/945b935ac66cc7f1a41f1b849c7c25adb5351f49	patch
	https://github.com/openssl/openssl/commit/364f095b80601db632b0def6a33316967f863bde	patch
	https://github.com/openssl/openssl/commit/7a9087efd769f362ad9c0e30c7baaa6bbfa65ecf	patch
	https://github.com/openssl/openssl/commit/a91e537d16d74050dbde50bb0dfb1fe9930f0521	patch

Impacted products

	Vendor	Product	Version
	OpenSSL	OpenSSL	Version: 3.6.0 ≤ Version: 3.5.0 ≤ Version: 3.4.0 ≤ Version: 3.3.0 ≤ Version: 3.0.0 ≤

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-31789",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-09T03:56:05.246752Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-13T13:04:17.163Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "OpenSSL",
          "vendor": "OpenSSL",
          "versions": [
            {
              "lessThan": "3.6.2",
              "status": "affected",
              "version": "3.6.0",
              "versionType": "semver"
            },
            {
              "lessThan": "3.5.6",
              "status": "affected",
              "version": "3.5.0",
              "versionType": "semver"
            },
            {
              "lessThan": "3.4.5",
              "status": "affected",
              "version": "3.4.0",
              "versionType": "semver"
            },
            {
              "lessThan": "3.3.7",
              "status": "affected",
              "version": "3.3.0",
              "versionType": "semver"
            },
            {
              "lessThan": "3.0.20",
              "status": "affected",
              "version": "3.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "Quoc Tran (Xint.io - US Team)"
        },
        {
          "lang": "en",
          "type": "remediation developer",
          "value": "Igor Ustinov"
        }
      ],
      "datePublic": "2026-04-07T14:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Issue summary: Converting an excessively large OCTET STRING value to\u003cbr\u003ea hexadecimal string leads to a heap buffer overflow on 32 bit platforms.\u003cbr\u003e\u003cbr\u003eImpact summary: A heap buffer overflow may lead to a crash or possibly\u003cbr\u003ean attacker controlled code execution or other undefined behavior.\u003cbr\u003e\u003cbr\u003eIf an attacker can supply a crafted X.509 certificate with an excessively\u003cbr\u003elarge OCTET STRING value in extensions such as the Subject Key Identifier\u003cbr\u003e(SKID) or Authority Key Identifier (AKID) which are being converted to hex,\u003cbr\u003ethe size of the buffer needed for the result is calculated as multiplication\u003cbr\u003eof the input length by 3. On 32 bit platforms, this multiplication may overflow\u003cbr\u003eresulting in the allocation of a smaller buffer and a heap buffer overflow.\u003cbr\u003e\u003cbr\u003eApplications and services that print or log contents of untrusted X.509\u003cbr\u003ecertificates are vulnerable to this issue. As the certificates would have\u003cbr\u003eto have sizes of over 1 Gigabyte, printing or logging such certificates\u003cbr\u003eis a fairly unlikely operation and only 32 bit platforms are affected,\u003cbr\u003ethis issue was assigned Low severity.\u003cbr\u003e\u003cbr\u003eThe FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this\u003cbr\u003eissue, as the affected code is outside the OpenSSL FIPS module boundary."
            }
          ],
          "value": "Issue summary: Converting an excessively large OCTET STRING value to\na hexadecimal string leads to a heap buffer overflow on 32 bit platforms.\n\nImpact summary: A heap buffer overflow may lead to a crash or possibly\nan attacker controlled code execution or other undefined behavior.\n\nIf an attacker can supply a crafted X.509 certificate with an excessively\nlarge OCTET STRING value in extensions such as the Subject Key Identifier\n(SKID) or Authority Key Identifier (AKID) which are being converted to hex,\nthe size of the buffer needed for the result is calculated as multiplication\nof the input length by 3. On 32 bit platforms, this multiplication may overflow\nresulting in the allocation of a smaller buffer and a heap buffer overflow.\n\nApplications and services that print or log contents of untrusted X.509\ncertificates are vulnerable to this issue. As the certificates would have\nto have sizes of over 1 Gigabyte, printing or logging such certificates\nis a fairly unlikely operation and only 32 bit platforms are affected,\nthis issue was assigned Low severity.\n\nThe FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this\nissue, as the affected code is outside the OpenSSL FIPS module boundary."
        }
      ],
      "metrics": [
        {
          "format": "other",
          "other": {
            "content": {
              "text": "Low"
            },
            "type": "https://openssl-library.org/policies/general/security-policy/"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-787",
              "description": "CWE-787 Out-of-bounds Write",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-07T22:00:54.983Z",
        "orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
        "shortName": "openssl"
      },
      "references": [
        {
          "name": "OpenSSL Advisory",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://openssl-library.org/news/secadv/20260407.txt"
        },
        {
          "name": "3.6.2 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/a24216018e1ede8ff01a4ff5afff7dfbd443e2f9"
        },
        {
          "name": "3.5.6 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/945b935ac66cc7f1a41f1b849c7c25adb5351f49"
        },
        {
          "name": "3.4.5 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/364f095b80601db632b0def6a33316967f863bde"
        },
        {
          "name": "3.3.7 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/7a9087efd769f362ad9c0e30c7baaa6bbfa65ecf"
        },
        {
          "name": "3.0.20 git commit",
          "tags": [
            "patch"
          ],
          "url": "https://github.com/openssl/openssl/commit/a91e537d16d74050dbde50bb0dfb1fe9930f0521"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Heap Buffer Overflow in Hexadecimal Conversion",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
    "assignerShortName": "openssl",
    "cveId": "CVE-2026-31789",
    "datePublished": "2026-04-07T22:00:54.983Z",
    "dateReserved": "2026-03-09T15:56:53.191Z",
    "dateUpdated": "2026-04-13T13:04:17.163Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-31789\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-09T03:56:05.246752Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-13T13:00:34.871Z\"}}], \"cna\": {\"title\": \"Heap Buffer Overflow in Hexadecimal Conversion\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"reporter\", \"value\": \"Quoc Tran (Xint.io - US Team)\"}, {\"lang\": \"en\", \"type\": \"remediation developer\", \"value\": \"Igor Ustinov\"}], \"metrics\": [{\"other\": {\"type\": \"https://openssl-library.org/policies/general/security-policy/\", \"content\": {\"text\": \"Low\"}}, \"format\": \"other\"}], \"affected\": [{\"vendor\": \"OpenSSL\", \"product\": \"OpenSSL\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.6.0\", \"lessThan\": \"3.6.2\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.5.0\", \"lessThan\": \"3.5.6\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.4.0\", \"lessThan\": \"3.4.5\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.3.0\", \"lessThan\": \"3.3.7\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"3.0.0\", \"lessThan\": \"3.0.20\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2026-04-07T14:00:00.000Z\", \"references\": [{\"url\": \"https://openssl-library.org/news/secadv/20260407.txt\", \"name\": \"OpenSSL Advisory\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/a24216018e1ede8ff01a4ff5afff7dfbd443e2f9\", \"name\": \"3.6.2 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/945b935ac66cc7f1a41f1b849c7c25adb5351f49\", \"name\": \"3.5.6 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/364f095b80601db632b0def6a33316967f863bde\", \"name\": \"3.4.5 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/7a9087efd769f362ad9c0e30c7baaa6bbfa65ecf\", \"name\": \"3.3.7 git commit\", \"tags\": [\"patch\"]}, {\"url\": \"https://github.com/openssl/openssl/commit/a91e537d16d74050dbde50bb0dfb1fe9930f0521\", \"name\": \"3.0.20 git commit\", \"tags\": [\"patch\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Issue summary: Converting an excessively large OCTET STRING value to\\na hexadecimal string leads to a heap buffer overflow on 32 bit platforms.\\n\\nImpact summary: A heap buffer overflow may lead to a crash or possibly\\nan attacker controlled code execution or other undefined behavior.\\n\\nIf an attacker can supply a crafted X.509 certificate with an excessively\\nlarge OCTET STRING value in extensions such as the Subject Key Identifier\\n(SKID) or Authority Key Identifier (AKID) which are being converted to hex,\\nthe size of the buffer needed for the result is calculated as multiplication\\nof the input length by 3. On 32 bit platforms, this multiplication may overflow\\nresulting in the allocation of a smaller buffer and a heap buffer overflow.\\n\\nApplications and services that print or log contents of untrusted X.509\\ncertificates are vulnerable to this issue. As the certificates would have\\nto have sizes of over 1 Gigabyte, printing or logging such certificates\\nis a fairly unlikely operation and only 32 bit platforms are affected,\\nthis issue was assigned Low severity.\\n\\nThe FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this\\nissue, as the affected code is outside the OpenSSL FIPS module boundary.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Issue summary: Converting an excessively large OCTET STRING value to\u003cbr\u003ea hexadecimal string leads to a heap buffer overflow on 32 bit platforms.\u003cbr\u003e\u003cbr\u003eImpact summary: A heap buffer overflow may lead to a crash or possibly\u003cbr\u003ean attacker controlled code execution or other undefined behavior.\u003cbr\u003e\u003cbr\u003eIf an attacker can supply a crafted X.509 certificate with an excessively\u003cbr\u003elarge OCTET STRING value in extensions such as the Subject Key Identifier\u003cbr\u003e(SKID) or Authority Key Identifier (AKID) which are being converted to hex,\u003cbr\u003ethe size of the buffer needed for the result is calculated as multiplication\u003cbr\u003eof the input length by 3. On 32 bit platforms, this multiplication may overflow\u003cbr\u003eresulting in the allocation of a smaller buffer and a heap buffer overflow.\u003cbr\u003e\u003cbr\u003eApplications and services that print or log contents of untrusted X.509\u003cbr\u003ecertificates are vulnerable to this issue. As the certificates would have\u003cbr\u003eto have sizes of over 1 Gigabyte, printing or logging such certificates\u003cbr\u003eis a fairly unlikely operation and only 32 bit platforms are affected,\u003cbr\u003ethis issue was assigned Low severity.\u003cbr\u003e\u003cbr\u003eThe FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this\u003cbr\u003eissue, as the affected code is outside the OpenSSL FIPS module boundary.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-787\", \"description\": \"CWE-787 Out-of-bounds Write\"}]}], \"providerMetadata\": {\"orgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"shortName\": \"openssl\", \"dateUpdated\": \"2026-04-07T22:00:54.983Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2026-31789\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-13T13:04:17.163Z\", \"dateReserved\": \"2026-03-09T15:56:53.191Z\", \"assignerOrgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"datePublished\": \"2026-04-07T22:00:54.983Z\", \"assignerShortName\": \"openssl\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

CERTFR-2026-AVI-0403

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans OpenSSL. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

L'éditeur indique que les modules FIPS des versions 3.6, 3.5, 3.4, 3.3, 3.1 et 3.0 sont affectés par la vulnérabilité CVE-2026-31790 et les versions 3.6 par la vulnérabilité CVE-2026-31790, sur systèmes x86-64 avec les instructions AVX-512 er VAES activées.

Impacted products

Vendor	Product	Description
OpenSSL	OpenSSL	OpenSSL versions 3.6.x antérieures à 3.6.2
OpenSSL	OpenSSL	OpenSSL versions 3.5.x antérieures à 3.5.6
OpenSSL	OpenSSL	OpenSSL versions 1.1.1 antérieures à 1.1.1zg
OpenSSL	OpenSSL	OpenSSL versions 3.0.x antérieures à 3.0.20
OpenSSL	OpenSSL	OpenSSL versions 3.4.x antérieures à 3.4.5
OpenSSL	OpenSSL	OpenSSL versions 3.3.x antérieures à 3.3.7
OpenSSL	OpenSSL	OpenSSL versions 1.0.2 antérieures à 1.0.2zp

References

Title

Publication Time

Tags

Bulletin de sécurité OpenSSL 20260407

2026-04-07

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "OpenSSL versions 3.6.x ant\u00e9rieures \u00e0 3.6.2",
      "product": {
        "name": "OpenSSL",
        "vendor": {
          "name": "OpenSSL",
          "scada": false
        }
      }
    },
    {
      "description": "OpenSSL versions 3.5.x ant\u00e9rieures \u00e0 3.5.6",
      "product": {
        "name": "OpenSSL",
        "vendor": {
          "name": "OpenSSL",
          "scada": false
        }
      }
    },
    {
      "description": "OpenSSL versions 1.1.1 ant\u00e9rieures \u00e0 1.1.1zg",
      "product": {
        "name": "OpenSSL",
        "vendor": {
          "name": "OpenSSL",
          "scada": false
        }
      }
    },
    {
      "description": "OpenSSL versions 3.0.x ant\u00e9rieures \u00e0 3.0.20",
      "product": {
        "name": "OpenSSL",
        "vendor": {
          "name": "OpenSSL",
          "scada": false
        }
      }
    },
    {
      "description": "OpenSSL versions 3.4.x ant\u00e9rieures \u00e0 3.4.5",
      "product": {
        "name": "OpenSSL",
        "vendor": {
          "name": "OpenSSL",
          "scada": false
        }
      }
    },
    {
      "description": "OpenSSL versions 3.3.x ant\u00e9rieures \u00e0 3.3.7",
      "product": {
        "name": "OpenSSL",
        "vendor": {
          "name": "OpenSSL",
          "scada": false
        }
      }
    },
    {
      "description": "OpenSSL versions 1.0.2 ant\u00e9rieures \u00e0 1.0.2zp",
      "product": {
        "name": "OpenSSL",
        "vendor": {
          "name": "OpenSSL",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "L\u0027\u00e9diteur indique que les modules FIPS des versions 3.6, 3.5, 3.4, 3.3, 3.1 et 3.0  sont affect\u00e9s par la vuln\u00e9rabilit\u00e9 CVE-2026-31790 et les versions 3.6 par la vuln\u00e9rabilit\u00e9 CVE-2026-31790, sur syst\u00e8mes x86-64 avec les instructions AVX-512 er VAES activ\u00e9es.",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-28386",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28386"
    },
    {
      "name": "CVE-2026-28389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28389"
    },
    {
      "name": "CVE-2026-28387",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28387"
    },
    {
      "name": "CVE-2026-28388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28388"
    },
    {
      "name": "CVE-2026-28390",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28390"
    },
    {
      "name": "CVE-2026-31789",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31789"
    },
    {
      "name": "CVE-2026-31790",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31790"
    }
  ],
  "initial_release_date": "2026-04-08T00:00:00",
  "last_revision_date": "2026-04-08T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0403",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-04-08T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans OpenSSL. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans OpenSSL",
  "vendor_advisories": [
    {
      "published_at": "2026-04-07",
      "title": "Bulletin de s\u00e9curit\u00e9 OpenSSL 20260407",
      "url": "https://openssl-library.org/news/secadv/20260407.txt"
    }
  ]
}

CERTFR-2026-AVI-0428

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Microsoft	N/A	azl3 openssl 3.3.5-4 versions antérieures à 3.3.5-5
Microsoft	N/A	azl3 sudo 1.9.17-1 versions antérieures à 1.9.17-2
Microsoft	N/A	azl3 openssh 9.8p1-5 versions antérieures à 9.8p1-6
Microsoft	N/A	azl3 vim 9.2.0240-1 versions antérieures à 9.2.0323-1
Microsoft	N/A	azl3 sleuthkit 4.12.1-1 versions antérieures à 4.12.1-2

References

Title

Publication Time

Tags

Bulletin de sécurité Microsoft CVE-2026-40024	2026-04-10	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-40025	2026-04-10	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-40026	2026-04-10	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-35386	2026-04-04	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-35388	2026-04-04	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-39881	2026-04-10	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31790	2026-04-09	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-35535	2026-04-05	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-28388	2026-04-09	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-28390	2026-04-11	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-31789	2026-04-09	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-35385	2026-04-04	vendor-advisory
Bulletin de sécurité Microsoft CVE-2026-28389	2026-04-11	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "azl3 openssl 3.3.5-4 versions ant\u00e9rieures \u00e0 3.3.5-5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 sudo 1.9.17-1 versions ant\u00e9rieures \u00e0 1.9.17-2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 openssh 9.8p1-5 versions ant\u00e9rieures \u00e0 9.8p1-6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 vim 9.2.0240-1 versions ant\u00e9rieures \u00e0 9.2.0323-1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "azl3 sleuthkit 4.12.1-1 versions ant\u00e9rieures \u00e0 4.12.1-2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2026-40024",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-40024"
    },
    {
      "name": "CVE-2026-35388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-35388"
    },
    {
      "name": "CVE-2026-35386",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-35386"
    },
    {
      "name": "CVE-2026-40026",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-40026"
    },
    {
      "name": "CVE-2026-39881",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-39881"
    },
    {
      "name": "CVE-2026-28389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28389"
    },
    {
      "name": "CVE-2026-35535",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-35535"
    },
    {
      "name": "CVE-2026-28388",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28388"
    },
    {
      "name": "CVE-2026-35385",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-35385"
    },
    {
      "name": "CVE-2026-28390",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-28390"
    },
    {
      "name": "CVE-2026-40025",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-40025"
    },
    {
      "name": "CVE-2026-31789",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31789"
    },
    {
      "name": "CVE-2026-31790",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-31790"
    }
  ],
  "initial_release_date": "2026-04-13T00:00:00",
  "last_revision_date": "2026-04-13T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0428",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-04-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Microsoft. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Microsoft",
  "vendor_advisories": [
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-40024",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40024"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-40025",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40025"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-40026",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40026"
    },
    {
      "published_at": "2026-04-04",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-35386",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35386"
    },
    {
      "published_at": "2026-04-04",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-35388",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35388"
    },
    {
      "published_at": "2026-04-10",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-39881",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-39881"
    },
    {
      "published_at": "2026-04-09",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31790",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31790"
    },
    {
      "published_at": "2026-04-05",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-35535",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35535"
    },
    {
      "published_at": "2026-04-09",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-28388",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-28388"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-28390",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-28390"
    },
    {
      "published_at": "2026-04-09",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-31789",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-31789"
    },
    {
      "published_at": "2026-04-04",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-35385",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35385"
    },
    {
      "published_at": "2026-04-11",
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft CVE-2026-28389",
      "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-28389"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2026-31789 (GCVE-0-2026-31789)

Vulnerability from cvelistv5

CERTFR-2026-AVI-0403

Vulnerability from certfr_avis

Solutions

CERTFR-2026-AVI-0428

Vulnerability from certfr_avis

Solutions

Tags

Sightings

Nomenclature