{"document":{"acknowledgments":[{"urls":["https://kb.cert.org/vuls/id/339275#acknowledgements"]}],"category":"CERT/CC Vulnerability Note","csaf_version":"2.0","notes":[{"category":"summary","text":"### Overview\r\nThe Universal Plug and Play (UPnP) protocol in effect prior to April 17, 2020 can be abused to send traffic to arbitrary destinations using the SUBSCRIBE functionality.\r\n\r\n### Description\r\nThe UPnP protocol, as specified by the Open Connectivity Foundation (OCF), is designed to provide  automatic  discovery and interaction with devices on a network. The UPnP protocol is designed to be used in a trusted local area network (LAN) and the protocol does not implement any form of authentication or verification.\r\n\r\nMany common Internet-connected devices support UPnP, as noted in previous research from Daniel Garcia ([VU#357851](https://www.kb.cert.org/vuls/id/357851)) and [Rapid7](https://blog.rapid7.com/2013/01/29/security-flaws-in-universal-plug-and-play-unplug-dont-play/). Garcia presented at [DEFCON 2019](https://www.defcon.org/images/defcon-19/dc-19-presentations/Garcia/DEFCON-19-Garcia-UPnP-Mapping.pdf) and published a scanning and portmapping tool. The UPnP [Device Protection](https://upnp.org/specs/gw/UPnP-gw-DeviceProtection-v1-Service.pdf) service was not widely adopted.\r\n\r\nA vulnerability in the UPnP SUBSCRIBE capability permits an attacker to send large amounts of data to arbitrary destinations accessible over the Internet, which could lead to a Distributed Denial of Service (DDoS), data exfiltration, and other unexpected network behavior. The OCF has [updated the UPnP specification](https://openconnectivity.org/upnp-specs/UPnP-arch-DeviceArchitecture-v2.0-20200417.pdf) to address this issue. This vulnerability has been assigned  CVE-2020-12695 and is also known as [Call Stranger](https://callstranger.com).\r\n\r\nAlthough offering UPnP services on the Internet is generally considered to be a [misconfiguration](https://www.kb.cert.org/vuls/id/357851/), a number of devices are still available over the Internet according to a  [recent Shodan scan](https://www.shodan.io/search?query=upnp).\r\n\r\n### Impact\r\nA remote, unauthenticated attacker may be able to abuse the UPnP SUBSCRIBE capability to send traffic to arbitrary destinations, leading to amplified DDoS attacks and data exfiltration. In general, making UPnP available over the the Internet can pose further security vulnerabilities than the one described in this vulnerability note.\r\n\r\n### Solution\r\n\r\n#### Affected devices\r\nA number of devices have been identified as vulnerable by the security researcher and have been posted at the [CallStranger](https://callstranger.com) website.  There is more information on affected devices in  Tenable's blog on [cve-2020-12695](https://www.tenable.com/blog/cve-2020-12695-callstranger-vulnerability-in-universal-plug-and-play-upnp-puts-billions-of).\r\n\r\n#### Apply updates\r\nVendors are urged to implement the updated [specification](https://openconnectivity.org/upnp-specs/UPnP-arch-DeviceArchitecture-v2.0-20200417.pdf) provided by the OCF.. Users should monitor vendor support channels for updates that implement the new SUBSCRIBE specification.\r\n\r\n#### Disable or Restrict UPnP\r\nDisable the UPnP protocol on Internet-accessible interfaces. Device manufacturers are urged to disable the UPnP SUBSCRIBE capability in their default configuration and to require users to explicitly enable SUBSCRIBE with any appropriate network restrictions  to limit its usage to a trusted local area network.\r\n\r\n#### IDS Signature\r\nThis Surricata IDS rule looks for any HTTP SUBSCRIBE request to what is likely to be an external network (i.e., not RFC1918 and RFC4193 addresses). Network administrators and ISPs can deploy this signature at the Internet access point to detect any anomalous SUBSCRIBE requests reaching their users.\r\n\r\n`alert http any any -> ![fd00::/8,192.168.0.0/16,10.0.0.0/8,172.16.0.0/12] any (msg:\"UPnP SUBSCRIBE request seen to external network VU#339275: CVE-\r\n2020-12695  https://kb.cert.org \"; content: \"subscribe\"; nocase; http_method; sid:1367339275;)`\r\n\r\n### Acknowledgements ###\r\nThis vulnerability was reported by Yunus Çadirci from EY Turkey.\r\n\r\n This document was written by Vijay Sarvepalli.","title":"Summary"},{"category":"legal_disclaimer","text":"THIS DOCUMENT IS PROVIDED ON AN 'AS IS' BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. ","title":"Legal Disclaimer"},{"category":"other","text":"CERT/CC Vulnerability Note is a limited advisory. It primarily identifies vendors impacted by the advisory and not specific products. We only support \"known_affected\" and \"known_not_affected\" status. Please consult the vendor's statements and advisory URL if provided by the vendor for more details ","title":"Limitations of Advisory"},{"category":"other","text":"None of the Ruckus products are vulnerable to CVE-2020-12695","title":"Vendor statment from Commscope"},{"category":"other","text":"Commscope acquired Arris and Ruckus Wireless.  Announcements may be duplicated in the brand named vendor sections.","title":"CERT/CC comment on Commscope notes"},{"category":"other","text":"In NCOS, UPnP Gateway is disabled and the zone-based firewall is configured with an explicit deny for unsolicited inbound traffic by default","title":"Vendor statment from Cradlepoint"},{"category":"other","text":"No statement is currently available from the vendor regarding this vulnerability.","title":"Vendor statment from Sierra Wireless"},{"category":"other","text":"There are no additional comments at this time.","title":"CERT/CC comment on Sierra Wireless notes"},{"category":"other","text":"None of the Ruckus products are vulnerable to CVE-2020-12695","title":"Vendor statment from Ruckus Wireless"},{"category":"other","text":"Please note that Commscope acquired Ruckus Wireless in 2019.  You may see future advisory under Commscope.","title":"CERT/CC comment on Ruckus Wireless notes"},{"category":"other","text":"Zyxel security team confirms that Zyxel’s VMG8324-B10A has the default firewall rule to block UPnP traffic from WAN since its first firmware V1.00(AAKL.0)C0 released in May 2013. However, if users intentionally disable the firewall feature, it could be vulnerable.","title":"Vendor statment from Zyxel"},{"category":"other","text":"Users are urged to not disable firewall to reduce the impact of this vulnerability from the WAN interface. Check Zyxel advisories for regular updates.","title":"CERT/CC comment on Zyxel notes"},{"category":"other","text":"HostAP has released a statement and patches, see the References section for details.","title":"CERT/CC comment on hostapd notes"},{"category":"other","text":"Open Connectivity Foundation has updated their specification and published in the bulletin, see references.","title":"CERT/CC comment on Open Connectivity Foundation notes"},{"category":"other","text":"LANCOM Systems products are not vulnerable to these vulnerabilities.","title":"Vendor statment from LANCOM Systems GmbH"},{"category":"other","text":"Please refer to Synology-SA-20:13","title":"Vendor statment from Synology"}],"publisher":{"category":"coordinator","contact_details":"Email: cert@cert.org, Phone: +1412 268 5800","issuing_authority":"CERT/CC under DHS/CISA https://www.cisa.gov/cybersecurity also see https://kb.cert.org/ ","name":"CERT/CC","namespace":"https://kb.cert.org/"},"references":[{"url":"https://certcc.github.io/certcc_disclosure_policy","summary":"CERT/CC vulnerability disclosure policy"},{"summary":"CERT/CC document released","category":"self","url":"https://kb.cert.org/vuls/id/339275"},{"url":"https://callstranger.com","summary":"https://callstranger.com"},{"url":"https://openconnectivity.org/developer/specifications/upnp-resources/upnp/","summary":"https://openconnectivity.org/developer/specifications/upnp-resources/upnp/"},{"url":"https://kb.cert.org/vuls/search/?q=upnp","summary":"https://kb.cert.org/vuls/search/?q=upnp"},{"url":"https://github.com/yunuscadirci/CallStranger","summary":"https://github.com/yunuscadirci/CallStranger"},{"url":"https://www.tenable.com/blog/cve-2020-12695-callstranger-vulnerability-in-universal-plug-and-play-upnp-puts-billions-of","summary":"https://www.tenable.com/blog/cve-2020-12695-callstranger-vulnerability-in-universal-plug-and-play-upnp-puts-billions-of"},{"url":"https://cradlepoint.com/vulnerability-alerts/","summary":"Reference(s) from vendor \"Cradlepoint\""},{"url":"https://support.ruckuswireless.com/security","summary":"Reference(s) from vendor \"Ruckus Wireless\""},{"url":"https://www.zyxel.com/us/en/support/security_advisories.shtml","summary":"Reference(s) from vendor \"Zyxel\""},{"url":"https://w1.fi/security/2020-1/","summary":"Reference(s) from vendor \"hostapd\""},{"url":"https://w1.fi/security/2020-1/upnp-subscribe-misbehavior-wps-ap.txt","summary":"Reference(s) from vendor \"hostapd\""},{"url":"https://openconnectivity.org/upnp-specs/UPnP-arch-DeviceArchitecture-v2.0-20200417.pdf","summary":"Reference(s) from vendor \"Open Connectivity Foundation\""},{"url":"https://www.synology.com/security/advisory/Synology_SA_20_13","summary":"Reference(s) from vendor \"Synology\""}],"title":"Universal Plug and Play (UPnP) SUBSCRIBE can be abused to send traffic to arbitrary destinations","tracking":{"current_release_date":"2020-07-08T21:44:36+00:00","generator":{"engine":{"name":"VINCE","version":"3.0.35"}},"id":"VU#339275","initial_release_date":"2020-06-08 00:00:00+00:00","revision_history":[{"date":"2020-07-08T21:44:36+00:00","number":"1.20200708214436.14","summary":"Released on 2020-07-08T21:44:36+00:00"}],"status":"final","version":"1.20200708214436.14"}},"vulnerabilities":[{"title":"The Open Connectivity Foundation UPnP specification before 2020-04-17\r\ndoes not forbid the acceptance of a subscription request with a\r\ndelivery URL on a different network segment than the fully qualified\r\nevent-subscription URL, aka the CallStranger issue.","notes":[{"category":"summary","text":"The Open Connectivity Foundation UPnP specification before 2020-04-17\r\ndoes not forbid the acceptance of a subscription request with a\r\ndelivery URL on a different network segment than the fully qualified\r\nevent-subscription URL, aka the CallStranger issue."}],"cve":"CVE-2020-12695","ids":[{"system_name":"CERT/CC V Identifier ","text":"VU#339275"}],"product_status":{"known_affected":["CSAFPID-f27f9d5e-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f27fdc7e-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f29621fa-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f2ae9e4c-3a7d-11f1-a172-0afffb3ee71d"],"known_not_affected":["CSAFPID-f27f6500-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f280760c-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f28b618e-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f28ca832-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f28ec928-3a7d-11f1-a172-0afffb3ee71d","CSAFPID-f2a69094-3a7d-11f1-a172-0afffb3ee71d"]}}],"product_tree":{"branches":[{"category":"vendor","name":"Commscope","product":{"name":"Commscope Products","product_id":"CSAFPID-f27f6500-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"hostapd","product":{"name":"hostapd Products","product_id":"CSAFPID-f27f9d5e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Open Connectivity Foundation","product":{"name":"Open Connectivity Foundation Products","product_id":"CSAFPID-f27fdc7e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Proxim Inc.","product":{"name":"Proxim Inc. Products","product_id":"CSAFPID-f2800e1a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"AT&T","product":{"name":"AT&T Products","product_id":"CSAFPID-f2803c96-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Sierra Wireless","product":{"name":"Sierra Wireless Products","product_id":"CSAFPID-f280760c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"SonicWall","product":{"name":"SonicWall Products","product_id":"CSAFPID-f280b306-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Quagga","product":{"name":"Quagga Products","product_id":"CSAFPID-f2812930-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Ubiquiti Networks","product":{"name":"Ubiquiti Networks Products","product_id":"CSAFPID-f2815c0c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"PHPIDS","product":{"name":"PHPIDS Products","product_id":"CSAFPID-f2819618-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"EfficientIP","product":{"name":"EfficientIP Products","product_id":"CSAFPID-f281d204-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Netgear Inc.","product":{"name":"Netgear Inc. Products","product_id":"CSAFPID-f282013e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Zebra Technologies","product":{"name":"Zebra Technologies Products","product_id":"CSAFPID-f2822f6a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Microsoft","product":{"name":"Microsoft Products","product_id":"CSAFPID-f2825dc8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"NLnet Labs","product":{"name":"NLnet Labs Products","product_id":"CSAFPID-f2828ea6-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"AVM GmbH","product":{"name":"AVM GmbH Products","product_id":"CSAFPID-f282d960-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"JH Software","product":{"name":"JH Software Products","product_id":"CSAFPID-f2831484-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Amazon","product":{"name":"Amazon Products","product_id":"CSAFPID-f2836b50-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"AirWatch","product":{"name":"AirWatch Products","product_id":"CSAFPID-f283b768-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Nokia","product":{"name":"Nokia Products","product_id":"CSAFPID-f283fe8a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"ADTRAN","product":{"name":"ADTRAN Products","product_id":"CSAFPID-f2845aa6-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"QLogic","product":{"name":"QLogic Products","product_id":"CSAFPID-f284b3f2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Turbolinux","product":{"name":"Turbolinux Products","product_id":"CSAFPID-f284e6b0-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Paessler","product":{"name":"Paessler Products","product_id":"CSAFPID-f28531ce-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"InfoExpress Inc.","product":{"name":"InfoExpress Inc. Products","product_id":"CSAFPID-f2857c06-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Lenovo","product":{"name":"Lenovo Products","product_id":"CSAFPID-f285ac44-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"OleumTech","product":{"name":"OleumTech Products","product_id":"CSAFPID-f285e556-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Unisys Corporation","product":{"name":"Unisys Corporation Products","product_id":"CSAFPID-f28611b6-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Digi International","product":{"name":"Digi International Products","product_id":"CSAFPID-f28641cc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Philips Electronics","product":{"name":"Philips Electronics Products","product_id":"CSAFPID-f28671ba-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"VMware","product":{"name":"VMware Products","product_id":"CSAFPID-f286a36a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Honeywell","product":{"name":"Honeywell Products","product_id":"CSAFPID-f286de7a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Check Point","product":{"name":"Check Point Products","product_id":"CSAFPID-f2870b0c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"TippingPoint Technologies Inc.","product":{"name":"TippingPoint Technologies Inc. Products","product_id":"CSAFPID-f2873b5e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Android Open Source Project","product":{"name":"Android Open Source Project Products","product_id":"CSAFPID-f2877a06-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Actiontec","product":{"name":"Actiontec Products","product_id":"CSAFPID-f287dab4-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"DragonFly BSD Project","product":{"name":"DragonFly BSD Project Products","product_id":"CSAFPID-f2880e3a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Fastly","product":{"name":"Fastly Products","product_id":"CSAFPID-f28853fe-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Foundry Brocade","product":{"name":"Foundry Brocade Products","product_id":"CSAFPID-f2888e6e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"OpenBSD","product":{"name":"OpenBSD Products","product_id":"CSAFPID-f288c762-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Juniper Networks","product":{"name":"Juniper Networks Products","product_id":"CSAFPID-f28901d2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"DesktopBSD","product":{"name":"DesktopBSD Products","product_id":"CSAFPID-f2893a44-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"INTEROP","product":{"name":"INTEROP Products","product_id":"CSAFPID-f2897176-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Green Hills Software","product":{"name":"Green Hills Software Products","product_id":"CSAFPID-f289a4de-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Espressif Systems","product":{"name":"Espressif Systems Products","product_id":"CSAFPID-f289d1c0-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Red Hat Inc.","product":{"name":"Red Hat Inc. Products","product_id":"CSAFPID-f28a0de8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"LiteSpeed Technologies","product":{"name":"LiteSpeed Technologies Products","product_id":"CSAFPID-f28a3b92-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Dell","product":{"name":"Dell Products","product_id":"CSAFPID-f28a7436-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Belden","product":{"name":"Belden Products","product_id":"CSAFPID-f28acecc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Oryx Embedded","product":{"name":"Oryx Embedded Products","product_id":"CSAFPID-f28b186e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Ruckus Wireless","product":{"name":"Ruckus Wireless Products","product_id":"CSAFPID-f28b618e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"LITE-ON Technology Corporation","product":{"name":"LITE-ON Technology Corporation Products","product_id":"CSAFPID-f28ba5ea-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Allied Telesis","product":{"name":"Allied Telesis Products","product_id":"CSAFPID-f28bdfd8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Muonics Inc.","product":{"name":"Muonics Inc. Products","product_id":"CSAFPID-f28c1e12-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"m0n0wall","product":{"name":"m0n0wall Products","product_id":"CSAFPID-f28c5b02-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Cradlepoint","product":{"name":"Cradlepoint Products","product_id":"CSAFPID-f28ca832-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Secure64 Software Corporation","product":{"name":"Secure64 Software Corporation Products","product_id":"CSAFPID-f28ce3ec-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Wind River","product":{"name":"Wind River Products","product_id":"CSAFPID-f28d79ce-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Infoblox","product":{"name":"Infoblox Products","product_id":"CSAFPID-f28dac3c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Aspera Inc.","product":{"name":"Aspera Inc. Products","product_id":"CSAFPID-f28e164a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Hitachi","product":{"name":"Hitachi Products","product_id":"CSAFPID-f28e55ce-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Hewlett Packard Enterprise","product":{"name":"Hewlett Packard Enterprise Products","product_id":"CSAFPID-f28e9228-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Peplink","product":{"name":"Peplink Products","product_id":"CSAFPID-f28ec928-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"SMC Networks Inc.","product":{"name":"SMC Networks Inc. Products","product_id":"CSAFPID-f28f05b4-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"BoringSSL","product":{"name":"BoringSSL Products","product_id":"CSAFPID-f28f37be-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Fedora Project","product":{"name":"Fedora Project Products","product_id":"CSAFPID-f28f6964-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Micro Focus","product":{"name":"Micro Focus Products","product_id":"CSAFPID-f28fa00a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Blue Coat Systems","product":{"name":"Blue Coat Systems Products","product_id":"CSAFPID-f29033bc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Blunk Microsystems","product":{"name":"Blunk Microsystems Products","product_id":"CSAFPID-f2907778-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Sonos","product":{"name":"Sonos Products","product_id":"CSAFPID-f290ba30-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"GFI Software","product":{"name":"GFI Software Products","product_id":"CSAFPID-f290f126-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"ADATA","product":{"name":"ADATA Products","product_id":"CSAFPID-f2913942-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"SEIKO EPSON Corp. /  Epson America Inc.","product":{"name":"SEIKO EPSON Corp. /  Epson America Inc. Products","product_id":"CSAFPID-f2919dd8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Geexbox","product":{"name":"Geexbox Products","product_id":"CSAFPID-f291e16c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Deutsche Telekom","product":{"name":"Deutsche Telekom Products","product_id":"CSAFPID-f292221c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"OpenWRT","product":{"name":"OpenWRT Products","product_id":"CSAFPID-f2925a2a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"LG Electronics","product":{"name":"LG Electronics Products","product_id":"CSAFPID-f292b312-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Untangle","product":{"name":"Untangle Products","product_id":"CSAFPID-f292e99a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"AhnLab Inc","product":{"name":"AhnLab Inc Products","product_id":"CSAFPID-f2932798-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Microchip Technology","product":{"name":"Microchip Technology Products","product_id":"CSAFPID-f293603c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"GNU adns","product":{"name":"GNU adns Products","product_id":"CSAFPID-f29391ce-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"McAfee","product":{"name":"McAfee Products","product_id":"CSAFPID-f2944b5a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Barracuda Networks","product":{"name":"Barracuda Networks Products","product_id":"CSAFPID-f2948764-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Quadros Systems","product":{"name":"Quadros Systems Products","product_id":"CSAFPID-f294c5e4-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Cirpack","product":{"name":"Cirpack Products","product_id":"CSAFPID-f294f91a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"XigmaNAS","product":{"name":"XigmaNAS Products","product_id":"CSAFPID-f2955c66-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Marvell Semiconductor","product":{"name":"Marvell Semiconductor Products","product_id":"CSAFPID-f2959744-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Broadcom","product":{"name":"Broadcom Products","product_id":"CSAFPID-f295e00a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Synology","product":{"name":"Synology Products","product_id":"CSAFPID-f29621fa-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"ANTlabs","product":{"name":"ANTlabs Products","product_id":"CSAFPID-f2966660-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Sophos","product":{"name":"Sophos Products","product_id":"CSAFPID-f296ad82-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"IP Infusion Inc.","product":{"name":"IP Infusion Inc. Products","product_id":"CSAFPID-f296e068-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"BlueCat Networks Inc.","product":{"name":"BlueCat Networks Inc. Products","product_id":"CSAFPID-f297160a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"CA Technologies","product":{"name":"CA Technologies Products","product_id":"CSAFPID-f297468e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"CMX Systems","product":{"name":"CMX Systems Products","product_id":"CSAFPID-f2978630-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"FreeBSD Project","product":{"name":"FreeBSD Project Products","product_id":"CSAFPID-f2982e14-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Lancope","product":{"name":"Lancope Products","product_id":"CSAFPID-f298769e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Ubuntu","product":{"name":"Ubuntu Products","product_id":"CSAFPID-f298b35c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"CZ.NIC","product":{"name":"CZ.NIC Products","product_id":"CSAFPID-f298eb24-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Samsung Mobile","product":{"name":"Samsung Mobile Products","product_id":"CSAFPID-f2991b8a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"QUALCOMM Incorporated","product":{"name":"QUALCOMM Incorporated Products","product_id":"CSAFPID-f2997b0c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"ARRIS","product":{"name":"ARRIS Products","product_id":"CSAFPID-f299c6d4-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Symantec","product":{"name":"Symantec Products","product_id":"CSAFPID-f299f8de-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Dell SecureWorks","product":{"name":"Dell SecureWorks Products","product_id":"CSAFPID-f29a2bb0-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"NEC Corporation","product":{"name":"NEC Corporation Products","product_id":"CSAFPID-f29a5996-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"OpenSSL","product":{"name":"OpenSSL Products","product_id":"CSAFPID-f29a924e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Akamai Technologies Inc.","product":{"name":"Akamai Technologies Inc. Products","product_id":"CSAFPID-f29aeca8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Samsung","product":{"name":"Samsung Products","product_id":"CSAFPID-f29b2c22-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Ericsson","product":{"name":"Ericsson Products","product_id":"CSAFPID-f29b60ac-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Sony","product":{"name":"Sony Products","product_id":"CSAFPID-f29b8ff0-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Apple","product":{"name":"Apple Products","product_id":"CSAFPID-f29bbf70-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Extreme Networks","product":{"name":"Extreme Networks Products","product_id":"CSAFPID-f29c02dc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Men & Mice","product":{"name":"Men & Mice Products","product_id":"CSAFPID-f29c5548-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Aruba Networks","product":{"name":"Aruba Networks Products","product_id":"CSAFPID-f29c9da0-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Treck","product":{"name":"Treck Products","product_id":"CSAFPID-f29d5628-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"European Registry for Internet Domains","product":{"name":"European Registry for Internet Domains Products","product_id":"CSAFPID-f29d9688-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"CoreOS","product":{"name":"CoreOS Products","product_id":"CSAFPID-f29ddc38-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"SUSE Linux","product":{"name":"SUSE Linux Products","product_id":"CSAFPID-f29e4556-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"A10 Networks","product":{"name":"A10 Networks Products","product_id":"CSAFPID-f29e8b10-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Grandstream","product":{"name":"Grandstream Products","product_id":"CSAFPID-f29ebebe-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"TDS Telecom","product":{"name":"TDS Telecom Products","product_id":"CSAFPID-f29eefc4-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"netsnmp","product":{"name":"netsnmp Products","product_id":"CSAFPID-f29f4276-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Contiki OS","product":{"name":"Contiki OS Products","product_id":"CSAFPID-f29f8754-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Sourcefire","product":{"name":"Sourcefire Products","product_id":"CSAFPID-f29fd6d2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Belkin Inc.","product":{"name":"Belkin Inc. Products","product_id":"CSAFPID-f2a00940-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Vertical Networks Inc.","product":{"name":"Vertical Networks Inc. Products","product_id":"CSAFPID-f2a04946-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Pulse Secure","product":{"name":"Pulse Secure Products","product_id":"CSAFPID-f2a09522-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"WizNET Technology","product":{"name":"WizNET Technology Products","product_id":"CSAFPID-f2a0ed4c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Cambium Networks","product":{"name":"Cambium Networks Products","product_id":"CSAFPID-f2a13360-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Debian GNU/Linux","product":{"name":"Debian GNU/Linux Products","product_id":"CSAFPID-f2a16cb8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"F-Secure Corporation","product":{"name":"F-Secure Corporation Products","product_id":"CSAFPID-f2a1a93a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Miredo","product":{"name":"Miredo Products","product_id":"CSAFPID-f2a1e9fe-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"eero","product":{"name":"eero Products","product_id":"CSAFPID-f2a21e6a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Lynx Software Technologies","product":{"name":"Lynx Software Technologies Products","product_id":"CSAFPID-f2a267bc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Slackware Linux Inc.","product":{"name":"Slackware Linux Inc. Products","product_id":"CSAFPID-f2a2a11e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Medtronic","product":{"name":"Medtronic Products","product_id":"CSAFPID-f2a2d44a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Huawei Technologies","product":{"name":"Huawei Technologies Products","product_id":"CSAFPID-f2a30eba-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"ENEA","product":{"name":"ENEA Products","product_id":"CSAFPID-f2a3431c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Riverbed Technologies","product":{"name":"Riverbed Technologies Products","product_id":"CSAFPID-f2a37fb2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"MediaTek","product":{"name":"MediaTek Products","product_id":"CSAFPID-f2a3c99a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Arista Networks Inc.","product":{"name":"Arista Networks Inc. Products","product_id":"CSAFPID-f2a401a8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"D-Link Systems Inc.","product":{"name":"D-Link Systems Inc. Products","product_id":"CSAFPID-f2a4539c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Lantronix","product":{"name":"Lantronix Products","product_id":"CSAFPID-f2a4861e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"ASUSTeK Computer Inc.","product":{"name":"ASUSTeK Computer Inc. Products","product_id":"CSAFPID-f2a4b4ae-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Oracle Corporation","product":{"name":"Oracle Corporation Products","product_id":"CSAFPID-f2a4ee88-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"QNX Software Systems Inc.","product":{"name":"QNX Software Systems Inc. Products","product_id":"CSAFPID-f2a53334-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"SafeNet","product":{"name":"SafeNet Products","product_id":"CSAFPID-f2a5871c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Aerohive","product":{"name":"Aerohive Products","product_id":"CSAFPID-f2a5bfb6-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"pfSense","product":{"name":"pfSense Products","product_id":"CSAFPID-f2a6050c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Actelis Networks","product":{"name":"Actelis Networks Products","product_id":"CSAFPID-f2a63298-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Palo Alto Networks","product":{"name":"Palo Alto Networks Products","product_id":"CSAFPID-f2a66286-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"LANCOM Systems GmbH","product":{"name":"LANCOM Systems GmbH Products","product_id":"CSAFPID-f2a69094-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Rocket RTOS (Inactive)","product":{"name":"Rocket RTOS (Inactive) Products","product_id":"CSAFPID-f2a6bb96-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Force10 Networks","product":{"name":"Force10 Networks Products","product_id":"CSAFPID-f2a6e8c8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Google","product":{"name":"Google Products","product_id":"CSAFPID-f2a715c8-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Inmarsat","product":{"name":"Inmarsat Products","product_id":"CSAFPID-f2a74278-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"IBM Corporation","product":{"name":"IBM Corporation Products","product_id":"CSAFPID-f2a7700e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"HP Inc.","product":{"name":"HP Inc. Products","product_id":"CSAFPID-f2a79ffc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"dd-wrt","product":{"name":"dd-wrt Products","product_id":"CSAFPID-f2a7d008-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"lwIP","product":{"name":"lwIP Products","product_id":"CSAFPID-f2a80e9c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Internet Systems Consortium - DHCP","product":{"name":"Internet Systems Consortium - DHCP Products","product_id":"CSAFPID-f2a8481c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Intel","product":{"name":"Intel Products","product_id":"CSAFPID-f2a879ae-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"MikroTik","product":{"name":"MikroTik Products","product_id":"CSAFPID-f2a8be3c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Gentoo Linux","product":{"name":"Gentoo Linux Products","product_id":"CSAFPID-f2a8ef38-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Xilinx","product":{"name":"Xilinx Products","product_id":"CSAFPID-f2a91f1c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Cisco","product":{"name":"Cisco Products","product_id":"CSAFPID-f2a94db6-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Joyent","product":{"name":"Joyent Products","product_id":"CSAFPID-f2a99384-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Ceragon Networks Inc","product":{"name":"Ceragon Networks Inc Products","product_id":"CSAFPID-f2a9c9ee-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Fortinet","product":{"name":"Fortinet Products","product_id":"CSAFPID-f2aa1d54-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"dnsmasq","product":{"name":"dnsmasq Products","product_id":"CSAFPID-f2aa5490-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"TP-LINK","product":{"name":"TP-LINK Products","product_id":"CSAFPID-f2aa85d2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"eCosCentric","product":{"name":"eCosCentric Products","product_id":"CSAFPID-f2aabf70-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Devicescape","product":{"name":"Devicescape Products","product_id":"CSAFPID-f2aaede2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"ACCESS","product":{"name":"ACCESS Products","product_id":"CSAFPID-f2ab1b82-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Alcatel-Lucent Enterprise","product":{"name":"Alcatel-Lucent Enterprise Products","product_id":"CSAFPID-f2ab4bde-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"NETSCOUT","product":{"name":"NETSCOUT Products","product_id":"CSAFPID-f2ab8c3e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Cypress Semiconductor","product":{"name":"Cypress Semiconductor Products","product_id":"CSAFPID-f2abd1b2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Nominum","product":{"name":"Nominum Products","product_id":"CSAFPID-f2ac156e-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Mitel Networks Inc.","product":{"name":"Mitel Networks Inc. Products","product_id":"CSAFPID-f2ac4a7a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"BlackBerry","product":{"name":"BlackBerry Products","product_id":"CSAFPID-f2ac95de-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"GNU glibc","product":{"name":"GNU glibc Products","product_id":"CSAFPID-f2acd0d0-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Cricket Wireless","product":{"name":"Cricket Wireless Products","product_id":"CSAFPID-f2ad19b4-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Zephyr Project","product":{"name":"Zephyr Project Products","product_id":"CSAFPID-f2ad4b5a-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Tenable Network Security","product":{"name":"Tenable Network Security Products","product_id":"CSAFPID-f2ad92cc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Snort","product":{"name":"Snort Products","product_id":"CSAFPID-f2ade5ce-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Illumos","product":{"name":"Illumos Products","product_id":"CSAFPID-f2ae1b16-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Roku","product":{"name":"Roku Products","product_id":"CSAFPID-f2ae6ce2-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Zyxel","product":{"name":"Zyxel Products","product_id":"CSAFPID-f2ae9e4c-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Express Logic","product":{"name":"Express Logic Products","product_id":"CSAFPID-f2aedc72-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"HCC","product":{"name":"HCC Products","product_id":"CSAFPID-f2af2056-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"NIKSUN","product":{"name":"NIKSUN Products","product_id":"CSAFPID-f2af79fc-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"Dell EMC","product":{"name":"Dell EMC Products","product_id":"CSAFPID-f2afea90-3a7d-11f1-a172-0afffb3ee71d"}},{"category":"vendor","name":"HTC","product":{"name":"HTC Products","product_id":"CSAFPID-f2b0503e-3a7d-11f1-a172-0afffb3ee71d"}}]}}