{"id":1016878,"date":"2023-11-14T22:18:49","date_gmt":"2023-11-15T00:18:49","guid":{"rendered":"https:\/\/teknomers.com\/fr\/cisa-fixe-une-date-limite-corrigez-les-failles-du-systeme-dexploitation-juniper-junos-avant-le-17-novembre\/"},"modified":"2023-11-14T22:18:53","modified_gmt":"2023-11-15T00:18:53","slug":"cisa-fixe-une-date-limite-corrigez-les-failles-du-systeme-dexploitation-juniper-junos-avant-le-17-novembre","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/cisa-fixe-une-date-limite-corrigez-les-failles-du-systeme-dexploitation-juniper-junos-avant-le-17-novembre\/","title":{"rendered":"CISA fixe une date limite &#8211; Corrigez les failles du syst\u00e8me d&#8217;exploitation Juniper Junos avant le 17 novembre"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">14 novembre 2023<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">R\u00e9daction<\/span><\/span><span class=\"p-tags\">Cyberattaque\/vuln\u00e9rabilit\u00e9<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2023\/11\/CISA-fixe-une-date-limite-Corrigez-les-failles-du.jpg\" style=\"clear: left; display: block; float: left; text-align: center;\"><\/a><\/div>\n<p>L&#8217;Agence am\u00e9ricaine de cybers\u00e9curit\u00e9 et de s\u00e9curit\u00e9 des infrastructures (CISA) a fix\u00e9 au 17 novembre 2023 la date limite aux agences et organisations f\u00e9d\u00e9rales pour appliquer des mesures d&#8217;att\u00e9nuation afin de se prot\u00e9ger contre un certain nombre de failles de s\u00e9curit\u00e9 dans Juniper Junos OS r\u00e9v\u00e9l\u00e9es en ao\u00fbt.<\/p>\n<p>L&#8217;agence lundi <a rel=\"nofollow noopener\" href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2023\/11\/13\/cisa-adds-six-known-exploited-vulnerabilities-catalog\" target=\"_blank\">ajout\u00e9e<\/a> cinq vuln\u00e9rabilit\u00e9s aux vuln\u00e9rabilit\u00e9s exploit\u00e9es connues (<a rel=\"nofollow noopener\" href=\"https:\/\/www.cisa.gov\/known-exploited-vulnerabilities-catalog\" target=\"_blank\">KEV<\/a>) catalogue, bas\u00e9 sur des preuves d&#8217;exploitation active &#8211;<\/p>\n<ul>\n<li><a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-36844\" target=\"_blank\"><strong>CVE-2023-36844<\/strong><\/a>  (score CVSS\u00a0: 5,3) &#8211; Vuln\u00e9rabilit\u00e9 de modification de variable externe PHP Juniper Junos OS EX Series<\/li>\n<li><a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-36845\" target=\"_blank\"><strong>CVE-2023-36845<\/strong><\/a>  (score CVSS : 5,3) &#8211; Vuln\u00e9rabilit\u00e9 de modification de variable externe PHP Juniper Junos OS EX Series et SRX Series<\/li>\n<li><a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-36846\" target=\"_blank\"><strong>CVE-2023-36846<\/strong><\/a>  (score CVSS : 5,3) &#8211; Authentification manquante Juniper Junos OS SRX Series pour vuln\u00e9rabilit\u00e9 de fonction critique<\/li>\n<li><a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-36847\" target=\"_blank\"><strong>CVE-2023-36847<\/strong><\/a>  (score CVSS : 5,3) &#8211; Authentification manquante Juniper Junos OS EX Series pour vuln\u00e9rabilit\u00e9 de fonction critique<\/li>\n<li><a rel=\"nofollow noopener\" href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2023-36851\" target=\"_blank\"><strong>CVE-2023-36851<\/strong><\/a>  (score CVSS : 5,3) &#8211; Authentification manquante Juniper Junos OS SRX Series pour vuln\u00e9rabilit\u00e9 de fonction critique<\/li>\n<\/ul>\n<div class=\"check_two clear babsi\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thn.news\/4WnFxcNN\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"La cyber-s\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2023\/11\/Les-experts-mettent-en-garde-contre-les-pirates-de-ransomware.png\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Selon Juniper, les vuln\u00e9rabilit\u00e9s pourraient \u00eatre transform\u00e9es en cha\u00eene d&#8217;exploitation pour permettre l&#8217;ex\u00e9cution de code \u00e0 distance sur des appareils non corrig\u00e9s.  Le CVE-2023-36851 a \u00e9galement \u00e9t\u00e9 ajout\u00e9 \u00e0 la liste, qui a \u00e9t\u00e9 d\u00e9crit comme une variante de la faille de t\u00e9l\u00e9chargement SRX.<\/p>\n<p>Juniper, dans une mise \u00e0 jour de son avis du 8 novembre 2023, <a rel=\"nofollow noopener\" href=\"https:\/\/supportportal.juniper.net\/s\/article\/2023-08-Out-of-Cycle-Security-Bulletin-Junos-OS-SRX-Series-and-EX-Series-Multiple-vulnerabilities-in-J-Web-can-be-combined-to-allow-a-preAuth-Remote-Code-Execution?language=en_US\" target=\"_blank\">dit<\/a> il est \u00ab d\u00e9sormais conscient de l&#8217;exploitation r\u00e9ussie de ces vuln\u00e9rabilit\u00e9s \u00bb, recommandant aux clients de mettre \u00e0 jour vers les derni\u00e8res versions avec effet imm\u00e9diat.<\/p>\n<p>Les d\u00e9tails entourant la nature de l\u2019exploitation sont actuellement inconnus.<\/p>\n<p>Dans une alerte distincte, la CISA a \u00e9galement <a rel=\"nofollow noopener\" href=\"https:\/\/www.cisa.gov\/news-events\/alerts\/2023\/11\/13\/cisa-releases-update-royal-ransomware-advisory\" target=\"_blank\">averti<\/a> que le gang de ransomwares Royal pourrait \u00eatre rebaptis\u00e9 BlackSuit en raison du fait que ce dernier partage \u00ab un certain nombre de caract\u00e9ristiques de codage identifi\u00e9es similaires \u00e0 celles de Royal \u00bb.<\/p>\n<p>Ce d\u00e9veloppement intervient alors que Cyfirma a r\u00e9v\u00e9l\u00e9 que des exploits pour des vuln\u00e9rabilit\u00e9s critiques sont propos\u00e9s \u00e0 la vente sur les forums darknet et les cha\u00eenes Telegram.<\/p>\n<p>&#8220;Ces vuln\u00e9rabilit\u00e9s englobent l&#8217;\u00e9l\u00e9vation de privil\u00e8ges, le contournement d&#8217;authentification, l&#8217;injection SQL et l&#8217;ex\u00e9cution de code \u00e0 distance, posant des risques de s\u00e9curit\u00e9 importants&#8221;, a d\u00e9clar\u00e9 la soci\u00e9t\u00e9 de cybers\u00e9curit\u00e9. <a rel=\"nofollow noopener\" href=\"https:\/\/www.cyfirma.com\/outofband\/critical-exploits-for-sale-on-the-dark-web\/\" target=\"_blank\">dit<\/a>ajoutant que &#8220;les groupes de ransomware recherchent activement des vuln\u00e9rabilit\u00e9s zero-day sur des forums clandestins afin de compromettre un grand nombre de victimes&#8221;.<\/p>\n<div class=\"check_two clear babsi\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/thn.news\/pjHvTZON\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"La cyber-s\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2023\/11\/Turla-met-a-jour-la-porte-derobee-Kazuar-avec-une.gif\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Cela fait \u00e9galement suite aux r\u00e9v\u00e9lations de Huntress selon lesquelles les acteurs malveillants ciblent plusieurs \u00e9tablissements de sant\u00e9 en abusant de l&#8217;outil d&#8217;acc\u00e8s \u00e0 distance ScreenConnect largement utilis\u00e9 par Transaction Data Systems, un fournisseur de logiciels de gestion de pharmacie, pour l&#8217;acc\u00e8s initial.<\/p>\n<p>&#8220;L&#8217;acteur malveillant a pris plusieurs mesures, notamment en installant des outils d&#8217;acc\u00e8s \u00e0 distance suppl\u00e9mentaires tels que des instances ScreenConnect ou AnyDesk, pour garantir un acc\u00e8s persistant aux environnements&#8221;, a d\u00e9clar\u00e9 Huntress. <a rel=\"nofollow noopener\" href=\"https:\/\/www.huntress.com\/blog\/third-party-pharmaceutical-vendor-linked-to-pharmacy-and-health-clinic-cyberattack\" target=\"_blank\">not\u00e9<\/a>.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ?  Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2023\/11\/cisa-sets-deadline-patch-juniper-junos.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80214 novembre 2023\ue804R\u00e9dactionCyberattaque\/vuln\u00e9rabilit\u00e9 L&#8217;Agence am\u00e9ricaine de cybers\u00e9curit\u00e9 et de s\u00e9curit\u00e9 des infrastructures (CISA) a fix\u00e9 au 17 novembre 2023 la date limite aux agences et organisations f\u00e9d\u00e9rales pour appliquer des mesures d&#8217;att\u00e9nuation afin de se prot\u00e9ger contre un certain nombre de failles de s\u00e9curit\u00e9 dans Juniper Junos OS r\u00e9v\u00e9l\u00e9es en ao\u00fbt. L&#8217;agence lundi ajout\u00e9e cinq [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1016879,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[200292,292,4805,4168,19981,4165,4161,200267,170,5858,4806,17720,90722,90723,4159,4171,65,834,200271,200268,200269,200270,3554,128318,4172,4169,2622,196,4166,4164],"class_list":["post-1016878","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-actualites-sur-la-cybersecurite","tag-avant","tag-cisa","tag-comment-pirater","tag-corrigez","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-cyberactualites","tag-date","tag-dexploitation","tag-failles","tag-fixe","tag-juniper","tag-junos","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-les","tag-limite","tag-logiciel-malveillant-rancongiciel","tag-mises-a-jour-sur-la-cybersecurite","tag-nouvelles-des-pirates","tag-nouvelles-sur-le-piratage","tag-novembre","tag-securite-des-informations","tag-securite-informatique","tag-securite-internet","tag-systeme","tag-une","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1016878","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1016878"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1016878\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1016879"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1016878"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1016878"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1016878"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}