Multiples vulnérabilités dans les produits Microsoft

CERT-FR

Changeflow GovPing Data Privacy & Cybersecurity Multiples vulnérabilités dans les produits Micr...

Routine Notice Added Final

Multiples vulnérabilités dans les produits Microsoft

CERT-FR Security Advisories

Published April 17th, 2026

Detected April 17th, 2026

Email

Summary

CERT-FR issued a security advisory informing of multiple vulnerabilities in Microsoft products affecting azl3 containerd2 (versions prior to 2.0.0-19) and cbl2 rubygem-rdiscount (versions prior to 2.2.0.2-4). The vulnerabilities, tracked as CVE-2026-35201 and CVE-2026-35469, could allow an attacker to cause an unspecified security issue. Affected parties are advised to refer to Microsoft security bulletins for patches.

Published by CERT-FR on cert.ssi.gouv.fr . Detected, standardized, and enriched by GovPing. Review our methodology and editorial standards .

View original document View source feed page

What changed

CERT-FR published a security advisory reporting multiple vulnerabilities in Microsoft products. Two CVEs are referenced: CVE-2026-35201 (April 15, 2026) and CVE-2026-35469 (April 17, 2026). Affected software includes azl3 containerd2 versions before 2.0.0-19 and cbl2 rubygem-rdiscount versions before 2.2.0.2-4.

Organizations using these Microsoft-related packages should review the referenced Microsoft Security Response Center bulletins and apply available patches. No specific risk level was provided by the editor, and no mandatory compliance obligations are imposed by this advisory.

Archived snapshot

Apr 17, 2026

GovPing captured this document from the original source. If the source has since changed or been removed, this is the text as it existed at that time.

Premier Ministre S.G.D.S.N

Agence nationale
de la sécurité des
systèmes d'information

Paris, le 17 avril 2026 N° CERTFR-2026-AVI-0456 Affaire suivie par: CERT-FR

Avis du CERT-FR

Objet: Multiples vulnérabilités dans les produits Microsoft

Gestion du document

Risque

Non spécifié par l'éditeur

Systèmes affectés

azl3 containerd2 0.0.0-1 versions antérieures à 2.0.0-19
cbl2 rubygem-rdiscount 2.2.0.2-3 versions antérieures à 2.2.0.2-4

Résumé

De multiples vulnérabilités ont été découvertes dans les produits Microsoft. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Documentation

Bulletin de sécurité Microsoft CVE-2026-35201 du 15 avril 2026
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35201
Bulletin de sécurité Microsoft CVE-2026-35469 du 17 avril 2026
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35469
Référence CVE CVE-2026-35201
https://www.cve.org/CVERecord?id=CVE-2026-35201
Référence CVE CVE-2026-35469
https://www.cve.org/CVERecord?id=CVE-2026-35469

Gestion détaillée du document

le 17 avril 2026 Version initiale

Related changes

Multiples vulnérabilités dans les produits Microsoft - 13 CVE

Routine Apr 13, 2026 • CERT-FR Security Advisories • Data Privacy & Cybersecurity

Multiples vulnérabilités dans les produits Microsoft

Priority review Apr 01, 2026 • CERT-FR Security Advisories • Data Privacy & Cybersecurity

Multiples vulnérabilités dans les produits Splunk, risque d'exécution de code arbitraire

Priority review Apr 16, 2026 • CERT-FR Security Advisories • Data Privacy & Cybersecurity

Get daily alerts for CERT-FR Security Advisories

Daily digest delivered to your inbox.

Free. Unsubscribe anytime.

Source

CERT-FR Security Advisories cert.ssi.gouv.fr/avis

Data Privacy & Cybersecurity

About this page

What is GovPing?

Every important government, regulator, and court update from around the world. One place. Real-time. Free. Our mission

What's from the agency?

Source document text, dates, docket IDs, and authority are extracted directly from CERT-FR.

What's AI-generated?

The summary, classification, recommended actions, deadlines, and penalty information are AI-generated from the original text and may contain errors. Always verify against the source document.

Last updated

April 17, 2026

Press inquiries →

Classification

Agency

CERT-FR

Published

April 17th, 2026

Instrument

Notice

Legal weight

Non-binding

Stage

Final

Change scope

Minor

Document ID

CERTFR-2026-AVI-0456

Who this affects

Applies to

Technology companies Government agencies

Industry sector

5112 Software & Technology

Activity scope

Vulnerability disclosure Security patching

Geographic scope

France FR

Taxonomy

Primary area

Cybersecurity

Operational domain

IT Security

Browse Categories

Agriculture & Food Safety 65 AI Regulation 3 Banking & Finance 332 Consumer Protection 63 Courts & Legal 361 Data Privacy & Cybersecurity 77 Defense & National Security 51 Education 44 Energy 100 Environment 86 Environmental & Energy 36 Environmental Regulation 7 Financial Regulation 2 Government & Legislation 278 Government Operations 107 Healthcare 136 Healthcare Compliance 6 Healthcare & Life Sciences 72 Housing 16 Immigration 8 Immigration & Border Control 2 Insurance 66 Labor & Employment 126 Legal & Judicial 29 Pharma & Drug Safety 101 Pharma & Healthcare 1 Privacy 1 Public Health 2 Real Estate & Housing 61 Sanctions & Export Controls 1 Securities & Investments 28 Securities & Markets 103 Securities Regulation 6 Tax 64 Tax & Revenue 9 Telecom & Technology 47 Trade & Commerce 3 Trade & Sanctions 135 Transportation 85

Multiples vulnérabilités dans les produits Microsoft

Summary

What changed

Archived snapshot

Avis du CERT-FR

Objet: Multiples vulnérabilités dans les produits Microsoft

Gestion du document

Risque

Systèmes affectés

Résumé

Solutions

Documentation

Gestion détaillée du document

Related changes

Source

About this page

Classification

Who this affects

Taxonomy

Browse Categories

Get alerts for this source

Subscribed!