{"total":40,"page":1,"count":40,"advisories":[{"id":"bc157e12-5dcf-4d8d-9ed4-a3ebf9d5d072","num":932,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-005/","title":"[Update] Vulnerability in Microsoft Exchange Server (May 15, 2026)","summary":"[Update on June 11, 2026] On June 9, 2026, Microsoft released corrective versions. [Initial publication] On May 14, 2026, Microsoft published a security notice regarding the vulnerability CVE-2026-42897 affecting Exchange Server. It allows an unauthenticated attacker to cause...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-005/","severity":"unknown","cvss":null,"cves":["CVE-2026-42897"],"exploited":true,"has_exploit":true,"published_at":"2026-05-15T00:00:00+00:00"},{"id":"9b5c864e-acb2-4656-a961-892c58ca2a0d","num":1979,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-004/","title":"Vulnerability in F5 BIG-IP Access Policy Manager (March 31, 2026)","summary":"On October 15, 2025, F5 published a security notice regarding, among other things, the vulnerability CVE-2025-53521. This affects BIG-IP APM and allows an unauthenticated attacker to execute code remotely. On March 29, 2026, the vendor indicates that this vulnerability is actively being exploited. The...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-004/","severity":"unknown","cvss":null,"cves":["CVE-2025-53521"],"exploited":true,"has_exploit":false,"published_at":"2026-03-31T00:00:00+00:00"},{"id":"c3c0453e-c6ae-4977-be7d-5681b1c6755a","num":580,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-003/","title":"Alert note – Targeting instant messaging accounts (March 20, 2026)","summary":"CERT-FR observes a resurgence of attack campaigns targeting instant messaging accounts. These campaigns particularly target governmental sectors (political figures, administration executives) but also civil society personnel performing functions...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-003/","severity":"unknown","cvss":null,"cves":[],"exploited":false,"has_exploit":false,"published_at":"2026-03-20T00:00:00+00:00"},{"id":"896729cb-ae22-4ed3-8e29-5666f3a9bb28","num":1976,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-002/","title":"[Update] Vulnerability in Cisco Catalyst SD-WAN (February 25, 2026)","summary":"A vulnerability has been discovered in Cisco Catalyst SD-WAN. It allows an attacker to bypass security policy. Cisco states that the vulnerability CVE-2026-20127 is actively being exploited.","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-002/","severity":"unknown","cvss":null,"cves":["CVE-2026-20127"],"exploited":true,"has_exploit":true,"published_at":"2026-02-25T00:00:00+00:00"},{"id":"61cde735-d95e-4386-a9a6-dd499523ed68","num":577,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-001/","title":"[Update] Multiple vulnerabilities in Ivanti Endpoint Manager Mobile (January 30, 2026)","summary":"[Update on February 9, 2026] On February 6, 2026, Ivanti made RPM detection scripts for indicators of compromise available, to be used depending on the installed version of EPMM. The vendor also updated its analysis guide (see Documentation section). [Update on February 2...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2026-ALE-001/","severity":"unknown","cvss":null,"cves":["CVE-2026-1340","CVE-2026-1281"],"exploited":false,"has_exploit":true,"published_at":"2026-01-30T00:00:00+00:00"},{"id":"d531baa4-925c-4633-b801-75ed041564e3","num":576,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-014/","title":"[Update] Vulnerability in React Server Components (December 5, 2025)","summary":"[Update on December 11, 2025] CERT-FR is aware of multiple exploitations of the vulnerability CVE-2025-55182. Servers with a vulnerable version exposed after the public proof of concept release on December 5, 2025, should be considered compromised....","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-014/","severity":"unknown","cvss":null,"cves":["CVE-2025-55182"],"exploited":true,"has_exploit":true,"published_at":"2025-12-05T00:00:00+00:00"},{"id":"22b5a924-5f59-4bd2-921c-c43df530e9b1","num":574,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-013/","title":"[Update] Multiple vulnerabilities in Cisco ASA and FTD (September 25, 2025)","summary":"[Update on November 7, 2025] On November 5, 2025, Cisco updated its blog post originally published on September 25, 2025 (see Documentation section). The vendor states it is aware of a new attack affecting vulnerable ASA and FTD devices, causing a denial...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-013/","severity":"unknown","cvss":null,"cves":["CVE-2025-20333","CVE-2025-20362"],"exploited":false,"has_exploit":true,"published_at":"2025-09-25T00:00:00+00:00"},{"id":"47a2f039-5f77-4257-9713-cbca3beb0d9d","num":1975,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-012/","title":"Vulnerability in Citrix NetScaler ADC and NetScaler Gateway (August 26, 2025)","summary":"On August 26, 2025, Citrix published a security bulletin (see Documentation section) regarding, among other things, the vulnerability CVE-2025-7775. This allows for remote code execution and affects all versions of Citrix NetScaler ADC and NetScaler Gateway, in certain...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-012/","severity":"unknown","cvss":null,"cves":["CVE-2025-7775"],"exploited":true,"has_exploit":true,"published_at":"2025-08-26T00:00:00+00:00"},{"id":"04e4c5fa-2d3d-4682-adc7-f4861076bcac","num":1973,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-011/","title":"Security incidents in SonicWall firewalls (August 5, 2025)","summary":"[Update on August 7, 2025] On August 6, 2025, SonicWall updated part of its initial statement to indicate that the mentioned security incidents were likely correlated to the vulnerability CVE-2024-40766. This was addressed in a security bulletin, SNWLID-2024-0015 (see...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-011/","severity":"unknown","cvss":null,"cves":["CVE-2024-40766"],"exploited":true,"has_exploit":false,"published_at":"2025-08-05T00:00:00+00:00"},{"id":"dc1f5056-eb86-4913-a190-716abbecdf7f","num":1005,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-010/","title":"[Update] Multiple vulnerabilities in Microsoft SharePoint (July 21, 2025)","summary":"[Update on July 23, 2025] On July 20, 2025, Microsoft released patches for a vulnerability of insufficient path traversal affecting SharePoint Enterprise Server 2016, SharePoint Server 2019 and...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-010/","severity":"unknown","cvss":null,"cves":["CVE-2025-53770","CVE-2025-53771"],"exploited":false,"has_exploit":true,"published_at":"2025-07-21T00:00:00+00:00"},{"id":"10438b87-2bba-4e4f-9f79-dcca39e76e88","num":1000,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-009/","title":"Multiple vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway (July 1, 2025)","summary":"[Update on July 17, 2025] The vendor has published a link containing a method for assessing attempts to exploit in application and system logs [12]. [Update on July 7, 2025] On June 17, 2025, Citrix released a security bulletin...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-009/","severity":"unknown","cvss":null,"cves":["CVE-2025-6543","CVE-2025-5777"],"exploited":false,"has_exploit":true,"published_at":"2025-07-01T00:00:00+00:00"},{"id":"4df06d04-ab11-470d-8071-58b7b2fe00e5","num":572,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-008/","title":"[Update] Vulnerability in Roundcube (June 5, 2025)","summary":"[Update on June 6, 2025] A proof of concept is publicly available. [Initial release] On June 1, 2025, Roundcube released patches for a critical vulnerability affecting its email portal as well as all products including it (for example, cPanel and...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-008/","severity":"unknown","cvss":null,"cves":["CVE-2025-49113"],"exploited":false,"has_exploit":true,"published_at":"2025-06-05T00:00:00+00:00"},{"id":"7b046e75-4a96-4922-b9d5-30594fac9140","num":562,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-007/","title":"Multiple vulnerabilities in Ivanti Endpoint Manager Mobile (EPMM) (May 14, 2025)","summary":"[Update on May 15, 2025] A proof of concept is publicly available on the Internet. [Initial release] On May 13, 2025, Ivanti released two security advisories regarding vulnerabilities CVE-2025-4427 and CVE-2025-4428. The combined use of these two vulnerabilities allows...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-007/","severity":"unknown","cvss":null,"cves":["CVE-2025-4427","CVE-2025-4428"],"exploited":true,"has_exploit":true,"published_at":"2025-05-14T00:00:00+00:00"},{"id":"93aad952-829e-4609-bba5-35f2e9905057","num":1947,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-006/","title":"Vulnerability in Fortinet products (May 13, 2025)","summary":"On May 13, 2025, Fortinet released a security advisory regarding the vulnerability CVE-2025-32756. This allows an unauthenticated attacker to execute arbitrary code remotely. The vendor indicates that this vulnerability is actively exploited. Exploits observed so far...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-006/","severity":"unknown","cvss":null,"cves":["CVE-2025-32756"],"exploited":true,"has_exploit":true,"published_at":"2025-05-13T00:00:00+00:00"},{"id":"869251b3-489c-4fa7-94cc-3bc16dfc602e","num":306,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-005/","title":"Vulnerability in SAP NetWeaver (April 28, 2025)","summary":"On April 24, 2025, SAP released a security bulletin regarding the vulnerability CVE-2025-31324 that allows for remote arbitrary code execution for an unauthenticated user. This vulnerability is caused by a security policy bypass that allows uploading...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-005/","severity":"unknown","cvss":null,"cves":["CVE-2025-31324"],"exploited":true,"has_exploit":true,"published_at":"2025-04-28T00:00:00+00:00"},{"id":"4822f8a3-10ce-4b88-bf83-bcd7bd12a688","num":561,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-004/","title":"Post-exploitation activities in Fortinet FortiGate (April 11, 2025)","summary":"Fortinet published a blog post on April 10, 2025, indicating the use of a post-exploitation technique that allows for a breach of data confidentiality across the entire system of affected Fortigate devices. This technique relies on the use of a link...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-004/","severity":"unknown","cvss":null,"cves":["CVE-2022-42475","CVE-2023-27997","CVE-2024-21762"],"exploited":false,"has_exploit":true,"published_at":"2025-04-11T00:00:00+00:00"},{"id":"e6e57a9d-27c2-427c-ad2e-30b8a2f7e3fa","num":1941,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-003/","title":"[Update] Vulnerability in Ivanti products (April 3, 2025)","summary":"[Update on April 11, 2025] CERT-FR is aware of a public proof of concept allowing for remote arbitrary code execution. [Update on April 4, 2025] CERT-FR is aware of a public proof of concept allowing for a shutdown of...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-003/","severity":"unknown","cvss":null,"cves":["CVE-2025-22457","CVE-2025-0282"],"exploited":false,"has_exploit":true,"published_at":"2025-04-03T00:00:00+00:00"},{"id":"5a992860-2f6a-44a1-8af8-538d8f572f7f","num":246,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-002/","title":"[Update] Vulnerability in Fortinet products (January 14, 2025)","summary":"[Update on January 28, 2025] A proof of concept for exploiting this vulnerability is publicly available. On January 14, 2025, Fortinet released a security advisory regarding the critical vulnerability CVE-2024-55591 affecting FortiOS and FortiProxy. It allows an...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-002/","severity":"unknown","cvss":null,"cves":["CVE-2024-55591"],"exploited":true,"has_exploit":true,"published_at":"2025-01-14T00:00:00+00:00"},{"id":"77a3f9b2-dc7d-47a5-95a2-b34ab7b94da4","num":560,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-001/","title":"[Update] Vulnerability in Ivanti products (January 9, 2025)","summary":"A zero-day stack overflow vulnerability has been discovered in Ivanti Connect Secure (ICS), Policy Secure (IPS), Neurons for Zero Trust Access (ZTA) gateways. This vulnerability, identified as CVE-2025-0282, allows an unauthenticated attacker to cause remote code execution...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2025-ALE-001/","severity":"unknown","cvss":null,"cves":["CVE-2025-0282"],"exploited":true,"has_exploit":true,"published_at":"2025-01-09T00:00:00+00:00"},{"id":"e686beb7-5810-4e93-b374-5120c6a60efb","num":245,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-015/","title":"[Update] Multiple vulnerabilities on the administration interface of Palo Alto Networks devices (November 15, 2024)","summary":"On November 8, 2024, Palo Alto Networks released a security advisory regarding a critical vulnerability in certain Palo Alto Networks firewalls. It allows an unauthenticated attacker to execute arbitrary code remotely on the administration interface of the devices. The vendor...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-015/","severity":"unknown","cvss":null,"cves":["CVE-2024-0012","CVE-2024-9474"],"exploited":false,"has_exploit":true,"published_at":"2024-11-15T00:00:00+00:00"},{"id":"8e2eb848-a130-471e-a09e-45521ab56275","num":1926,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-014/","title":"[Update] Multiple vulnerabilities in Fortinet FortiManager (October 23, 2024)","summary":"[Update on January 14, 2025] Release of patches On January 14, 2025, Fortinet released a security advisory regarding the vulnerability CVE-2024-50566 which corresponds to the zero-day vulnerability for which a proof of concept was published in November 2024. Some...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-014/","severity":"unknown","cvss":null,"cves":["CVE-2024-50566"],"exploited":false,"has_exploit":false,"published_at":"2024-10-23T00:00:00+00:00"},{"id":"77210e18-cd05-44d5-b06b-265f67e6ed95","num":1944,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-013/","title":"Exploitation of vulnerabilities in Ivanti Cloud Services Appliance (CSA) (October 22, 2024)","summary":"Ivanti has released several security advisories on vulnerabilities affecting CSA that are actively exploited: * On September 10, 2024, Ivanti released a security advisory regarding the vulnerability CVE-2024-8190 that allows an attacker, authenticated as an administrator, to execute...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-013/","severity":"unknown","cvss":null,"cves":["CVE-2024-8190"],"exploited":true,"has_exploit":true,"published_at":"2024-10-22T00:00:00+00:00"},{"id":"c4735d43-f156-4876-9ac0-68456f1775e5","num":1927,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-012/","title":"[Update] Vulnerabilities affecting OpenPrinting CUPS (September 27, 2024)","summary":"[Update on October 10, 2024] On September 28, 2024, Elastic Security Labs released detection rules in the vendor's proprietary format (see Documentation section), which are confirmed by CERT-FR analyses for detecting known attacks. [Initial release] From...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-012/","severity":"unknown","cvss":null,"cves":["CVE-2024-47176","CVE-2024-47076","CVE-2024-47175","CVE-2024-47177"],"exploited":false,"has_exploit":false,"published_at":"2024-09-27T00:00:00+00:00"},{"id":"ec62e39b-9860-492d-a61a-8a8a322e0de6","num":1925,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-011/","title":"Vulnerability in SonicWall (September 10, 2024)","summary":"On August 22, 2024, Sonicwall released a patch for the critical vulnerability CVE-2024-40766 affecting Sonicwall generation 5, 6, and 7 firewalls. This vulnerability, of the type access control failure, allows an attacker to cause a remote denial of service, a breach of...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-011/","severity":"unknown","cvss":null,"cves":["CVE-2024-40766"],"exploited":true,"has_exploit":false,"published_at":"2024-09-10T00:00:00+00:00"},{"id":"abf410d2-a807-474f-9aa2-79df15c23b70","num":1896,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-010/","title":"Multiple vulnerabilities in Roundcube (August 9, 2024)","summary":"On August 4, 2024, Roundcube released patches for critical vulnerabilities CVE-2024-42008 and CVE-2024-42009 affecting its email server. These vulnerabilities allow for indirect remote code injections (XSS) that can, for example, lead to the retrieval of...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-010/","severity":"unknown","cvss":null,"cves":["CVE-2024-42008","CVE-2024-42009"],"exploited":true,"has_exploit":true,"published_at":"2024-08-09T00:00:00+00:00"},{"id":"2a89b72d-4dbd-40e4-827f-bd90882bbb00","num":1954,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-009/","title":"Vulnerability in OpenSSH (July 1, 2024)","summary":"On July 1, 2024, OpenSSH published a security advisory regarding the critical vulnerability CVE-2024-6387. This vulnerability allows an unauthenticated attacker to execute arbitrary code remotely with *root* privileges. The vendor specifies that versions 8.5p1 to 9.7p1 are...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-009/","severity":"unknown","cvss":null,"cves":["CVE-2024-6387"],"exploited":false,"has_exploit":false,"published_at":"2024-07-01T00:00:00+00:00"},{"id":"d2b34cca-2a42-43e4-8470-52cc4e3aa135","num":1895,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-008/","title":"[Update] Vulnerability in Check Point products (May 30, 2024)","summary":"[Update on May 31, 2024] Proofs of concept are now publicly available on the Internet. Additionally, the vendor indicates that it has detected compromise attempts since April 7, 2024. [Initial Publication] A vulnerability was discovered in Check Point products....","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-008/","severity":"unknown","cvss":null,"cves":["CVE-2024-24919"],"exploited":false,"has_exploit":true,"published_at":"2024-05-30T00:00:00+00:00"},{"id":"5d614420-7da6-4842-80be-46913976d301","num":1894,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-007/","title":"Multiple vulnerabilities in Cisco products (April 25, 2024)","summary":"On April 24, 2024, Cisco published three security advisories regarding vulnerabilities affecting ASA and FTD security equipment. Two of them concern vulnerabilities CVE-2024-20353 and CVE-2024-20359 which are actively exploited in targeted attacks. The vulnerability...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-007/","severity":"unknown","cvss":null,"cves":["CVE-2024-20353","CVE-2024-20359"],"exploited":true,"has_exploit":false,"published_at":"2024-04-25T00:00:00+00:00"},{"id":"d069df4d-5c4b-478a-aaa5-303eb39b6109","num":999,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-006/","title":"[Update] Vulnerability in Palo Alto Networks GlobalProtect (April 12, 2024)","summary":"[Update on May 10, 2024] CERT-FR intervened to address a ransomware compromise within a French entity. In the context of this attack, the vulnerability was exploited to then lateralize within the victim's information system and...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-006/","severity":"unknown","cvss":null,"cves":["CVE-2024-3400"],"exploited":false,"has_exploit":true,"published_at":"2024-04-12T00:00:00+00:00"},{"id":"075c7ae1-bead-459c-bceb-4a7b05499217","num":1886,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-005/","title":"[Update] Vulnerability in Microsoft Outlook (February 15, 2024)","summary":"[Update on March 15, 2024] Added clarification regarding NTLM challenge-responses [Update on February 22, 2024] Added recommendations and clarifications on the functioning of the vulnerability. The vulnerability CVE-2024-21413 allows an attacker to bypass security measures...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-005/","severity":"unknown","cvss":null,"cves":["CVE-2024-21413"],"exploited":true,"has_exploit":true,"published_at":"2024-02-15T00:00:00+00:00"},{"id":"5b3d1adb-00e6-4c11-a616-5b8fefd117e2","num":559,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-004/","title":"[Update] Vulnerability in Fortinet FortiOS (February 9, 2024)","summary":"[Update on March 19, 2024] CERT-FR is aware of public exploit codes and new exploitation attempts. On February 8, 2024, Fortinet published the security advisory regarding the critical vulnerability CVE-2024-21762 affecting FortiOS SSL VPN. This vulnerability...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-004/","severity":"unknown","cvss":null,"cves":["CVE-2024-21762"],"exploited":true,"has_exploit":true,"published_at":"2024-02-09T00:00:00+00:00"},{"id":"3e9ed92b-2b44-49bb-987e-ccd74e202d4e","num":998,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-003/","title":"[Update] Incident affecting AnyDesk solutions (February 5, 2024)","summary":"[Update on February 27, 2024] On January 29, 2024, ANSSI was alerted by BSI that the vendor AnyDesk Software GmbH suffered a data leak. The source code of the applications developed by the vendor as well as certificates and private keys may have been stolen. From...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-003/","severity":"unknown","cvss":null,"cves":[],"exploited":false,"has_exploit":false,"published_at":"2024-02-05T00:00:00+00:00"},{"id":"2f009c78-3be7-4a4e-ae08-f6bfb915248c","num":1877,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-002/","title":"[Update] Multiple Vulnerabilities in GitLab (January 12, 2024)","summary":"[Update on January 29, 2024] On January 25, 2024, the vendor published a security advisory regarding several vulnerabilities affecting GitLab CE and EE. The vulnerability CVE-2024-0402 is considered critical with a CVSSv3 score of 9.9. It allows an authenticated attacker to write...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-002/","severity":"unknown","cvss":null,"cves":["CVE-2024-0402"],"exploited":false,"has_exploit":false,"published_at":"2024-01-12T00:00:00+00:00"},{"id":"0d4f28f7-35b2-4722-b473-39ed5849c2da","num":1875,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-001/","title":"[Update] Multiple vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways (January 11, 2024)","summary":"[Update on March 4, 2024] Ivanti published resolution recommendations for Ivanti Connect Secure or Policy Secure in virtual machine [16] on February 29. [Update on February 15, 2024] the vendor released patches for the following versions, which do not...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2024-ALE-001/","severity":"unknown","cvss":null,"cves":["CVE-2024-21888","CVE-2024-21893","CVE-2023-46805","CVE-2024-21887","CVE-2024-22024"],"exploited":false,"has_exploit":true,"published_at":"2024-01-11T00:00:00+00:00"},{"id":"1cb06d98-07c5-4ac9-b915-4c82656e08f3","num":558,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-013/","title":"Vulnerability in Apache Struts 2 (December 13, 2023)","summary":"On December 4, 2023, Apache published a security advisory regarding the critical vulnerability CVE-2023-50164 affecting the Struts 2 framework. This vulnerability allows an unauthenticated attacker to upload a backdoor to a vulnerable server, thus executing arbitrary code...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-013/","severity":"unknown","cvss":null,"cves":["CVE-2023-50164"],"exploited":false,"has_exploit":false,"published_at":"2023-12-13T00:00:00+00:00"},{"id":"fece0bb0-26bf-4c1f-b7a1-2eefc6e06118","num":527,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-012/","title":"[Update] Vulnerability in Citrix NetScaler ADC and NetScaler Gateway (October 23, 2023)","summary":"[Update on November 22, 2023] The vendor published a document [3] on November 20, 2023, listing the various logs to analyze as well as the items to look for to identify activity that may be related to a compromise. Additionally, CISA published a security advisory on the 21...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-012/","severity":"unknown","cvss":null,"cves":["CVE-2023-4966"],"exploited":false,"has_exploit":true,"published_at":"2023-10-23T00:00:00+00:00"},{"id":"1e0e2c0f-dd42-413f-82d7-fee2aed00fb3","num":835,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-011/","title":"[Update] Multiple vulnerabilities in Cisco IOS XE (October 17, 2023)","summary":"[Update on November 2, 2023] Version 17.3.8a is available. [Update on October 31, 2023] Technical details of the vulnerability CVE-2023-20198 are now publicly available. This vulnerability was already being widely exploited. All equipment exposing...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-011/","severity":"unknown","cvss":null,"cves":["CVE-2023-20198"],"exploited":true,"has_exploit":true,"published_at":"2023-10-17T00:00:00+00:00"},{"id":"8c262dd6-2a22-4e7f-bfec-26c12934ec79","num":525,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-010/","title":"Multiple vulnerabilities in Exim (October 2, 2023)","summary":"On September 27, 2023, Zero Day Initiative (ZDI) published six security advisories [1] regarding zero-day vulnerabilities affecting versions prior to 4.96.1 or 4.97 of the Exim Mail Transfer Agent (MTA). On October 1, 2023, the vendor...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-010/","severity":"unknown","cvss":null,"cves":["CVE-2023-42117","CVE-2023-42118","CVE-2023-42119","CVE-2023-42114","CVE-2023-42115","CVE-2023-42116"],"exploited":false,"has_exploit":false,"published_at":"2023-10-02T00:00:00+00:00"},{"id":"7296e66c-6485-41ab-816b-b7ff1209dcdc","num":1946,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-008/","title":"[Update] Vulnerability in Citrix NetScaler ADC and NetScaler Gateway (July 19, 2023)","summary":"On July 18, 2023, Citrix published a security advisory regarding several vulnerabilities. The most critical, with the CVE ID CVE-2023-3519, allows an unauthenticated attacker to execute arbitrary code remotely. The equipment is vulnerable if configured as...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-008/","severity":"unknown","cvss":null,"cves":["CVE-2023-3519"],"exploited":true,"has_exploit":true,"published_at":"2023-07-19T00:00:00+00:00"},{"id":"7a5eef9d-2c4a-477a-985f-b4611c02aeb6","num":900,"source_id":"cert-fr-alerte","external_id":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-007/","title":"[Update] Vulnerability in Zimbra Collaboration Suite (July 17, 2023)","summary":"[Update on July 26, 2023] Security patch released by the vendor On July 26, 2023, the vendor released a security patch [1] for this vulnerability registered as CVE-2023-37580. It is therefore strongly recommended to deploy patch P41 for all versions...","link":"https://www.cert.ssi.gouv.fr/alerte/CERTFR-2023-ALE-007/","severity":"unknown","cvss":null,"cves":["CVE-2023-37580"],"exploited":true,"has_exploit":true,"published_at":"2023-07-17T00:00:00+00:00"}]}