VDE-2022-013
Vulnerability from csaf_phoenixcontactgmbhcokg - Published: 2022-04-12 06:00 - Updated: 2025-05-14 13:00Summary
PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library
Notes
Summary:
FL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic certificates that contain elliptic curve public keys in compressed form, which may occur on:
Parsing client certificates for HTTPS administrative login
Parsing client certificates for SSH administrative login
Parsing peer certificates for IPsec VPN connections
Parsing certificates of external servers, including:
OpenVPN server
Configuration pull server
Update server
Attackers could try to exploit the vulnerability from remote.
For the mGuard Device Manager only the mdm Installer for Windows is affected.
UPDATE A: Added FL MGUARD 1102 and FL MGUARD 1105:
On FL MGUARD 1102 and FL MGUARD 1105 with mGuardNT 1.5.2 and older, the device can
be affected through an adapted certificate. This can occur on connection with a remote logging
server, configured for certificate authentication, or an remote authentication server at certificate
based authentication.
Impact: By sending a crafted certificate, attackers may trigger an infinite loop in the receiving service. This may cause the service to become unavailable. Additionally, the availability of other services may be reduced due to high CPU load.
FL MGUARD and TC MGUARD may be vulnerable in the following setups:
- Activated HTTPS administrative access with certificate-based authentication
- Activated SSH administrative access with certificate-based authentication
Use of IPsec VPN connections with certificate-based authentication
- Use of connections to external servers with certificate-based authentication, including:
1. OpenVPN server
2. Configuration pull server
3. Update server
FL WLAN may be vulnerable in the following setup:
- WLAN Client modes with activated certificate-based RADIUS server authentication
The services can be vulnerable, even when they are not configured to use elliptic curve cryptography explicitly.
Mitigation: To reduce the possibility of an attack, affected functionality could be deactivated or used only in a way that it is not exposed on untrusted interfaces.
Remediation: This vulnerability is fixed in firmware version 8.8.6. We strongly recommend all affected FL MGUARD and TC MGUARD users to upgrade to this or a later version.
PHOENIX CONTACT strongly recommends upgrading FL MGUARD DM UNLIMITED to version 1.13.0.2 or higher, which fixes this vulnerability.
For FL WLAN devices the vulnerability will be fixed in the next regular release. A release date is not yet defined.
The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).
7.5 (High)
Mitigation
To reduce the possibility of an attack, affected functionality could be deactivated or used only in a way that it is not exposed on untrusted interfaces.
Vendor Fix
This vulnerability is fixed in firmware version 8.8.6. We strongly recommend all affected FL MGUARD and TC MGUARD users to upgrade to this or a later version.
PHOENIX CONTACT strongly recommends upgrading FL MGUARD DM UNLIMITED to version 1.13.0.2 or higher, which fixes this vulnerability.
For FL WLAN devices the vulnerability will be fixed in the next regular release. A release date is not yet defined.
References
Acknowledgments
CERT@VDE
{
"document": {
"acknowledgments": [
{
"organization": "CERT@VDE",
"summary": "coordination"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-GB",
"notes": [
{
"category": "summary",
"text": "\nFL MGUARD and TC MGUARD devices are affected by a possible infinite loop within a OpenSSL library method for parsing elliptic curve parameters. This method is used on parsing cryptographic certificates that contain elliptic curve public keys in compressed form, which may occur on:\n\nParsing client certificates for HTTPS administrative login\nParsing client certificates for SSH administrative login\nParsing peer certificates for IPsec VPN connections\nParsing certificates of external servers, including:\nOpenVPN server\nConfiguration pull server\nUpdate server\nAttackers could try to exploit the vulnerability from remote.\nFor the mGuard Device Manager only the mdm Installer for Windows is affected.\n\nUPDATE A: Added FL MGUARD 1102 and FL MGUARD 1105:\n\nOn FL MGUARD 1102 and FL MGUARD 1105 with mGuardNT 1.5.2 and older, the device can\nbe affected through an adapted certificate. This can occur on connection with a remote logging\nserver, configured for certificate authentication, or an remote authentication server at certificate\nbased authentication.",
"title": "Summary"
},
{
"category": "description",
"text": "By sending a crafted certificate, attackers may trigger an infinite loop in the receiving service. This may cause the service to become unavailable. Additionally, the availability of other services may be reduced due to high CPU load.\n\nFL MGUARD and TC MGUARD may be vulnerable in the following setups:\n\n- Activated HTTPS administrative access with certificate-based authentication\n- Activated SSH administrative access with certificate-based authentication\nUse of IPsec VPN connections with certificate-based authentication\n- Use of connections to external servers with certificate-based authentication, including:\n 1. OpenVPN server\n 2. Configuration pull server\n 3. Update server\nFL WLAN may be vulnerable in the following setup:\n\n- WLAN Client modes with activated certificate-based RADIUS server authentication\n\nThe services can be vulnerable, even when they are not configured to use elliptic curve cryptography explicitly.",
"title": "Impact"
},
{
"category": "description",
"text": "To reduce the possibility of an attack, affected functionality could be deactivated or used only in a way that it is not exposed on untrusted interfaces.",
"title": "Mitigation"
},
{
"category": "description",
"text": "This vulnerability is fixed in firmware version 8.8.6. We strongly recommend all affected FL MGUARD and TC MGUARD users to upgrade to this or a later version.\n\nPHOENIX CONTACT strongly recommends upgrading FL MGUARD DM UNLIMITED to version 1.13.0.2 or higher, which fixes this vulnerability.\n\nFor FL WLAN devices the vulnerability will be fixed in the next regular release. A release date is not yet defined.",
"title": "Remediation"
}
],
"publisher": {
"category": "vendor",
"contact_details": "psirt@phoenixcontact.com",
"name": "Phoenix Contact GmbH \u0026 Co. KG",
"namespace": "https://phoenixcontact.com/psirt"
},
"references": [
{
"category": "external",
"summary": "PHOENIX CONTACT PSIRT ",
"url": "https://phoenixcontact.com/psirt"
},
{
"category": "external",
"summary": "CERT@VDE Security Advisories for PHOENIX CONTACT",
"url": "https://certvde.com/en/advisories/vendor/phoenixcontact/"
},
{
"category": "self",
"summary": "VDE-2022-013: PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library - HTML",
"url": "https://certvde.com/en/advisories/VDE-2022-013/"
},
{
"category": "self",
"summary": "VDE-2022-013: PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library - CSAF",
"url": "https://phoenixcontact.csaf-tp.certvde.com/.well-known/csaf/white/2022/vde-2022-013.json"
}
],
"title": "PHOENIX CONTACT: Multiple products affected by possible infinite loop within OpenSSL library",
"tracking": {
"aliases": [
"VDE-2022-013"
],
"current_release_date": "2025-05-14T13:00:15.000Z",
"generator": {
"date": "2025-03-31T07:15:47.332Z",
"engine": {
"name": "Secvisogram",
"version": "2.5.22"
}
},
"id": "VDE-2022-013",
"initial_release_date": "2022-04-12T06:00:00.000Z",
"revision_history": [
{
"date": "2022-04-12T06:00:00.000Z",
"number": "1",
"summary": "Initial revision."
},
{
"date": "2022-06-14T06:09:00.000Z",
"number": "2",
"summary": "Update A"
},
{
"date": "2025-05-14T13:00:15.000Z",
"number": "3",
"summary": "Fix: added distribution"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "FL MGUARD 1102",
"product": {
"name": "FL MGUARD 1102",
"product_id": "CSAFPID-11001",
"product_identification_helper": {
"model_numbers": [
"1153079"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD 1105",
"product": {
"name": "FL MGUARD 1105",
"product_id": "CSAFPID-11002",
"product_identification_helper": {
"model_numbers": [
"1153078"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CENTERPORT",
"product": {
"name": "FL MGUARD CENTERPORT",
"product_id": "CSAFPID-11003",
"product_identification_helper": {
"model_numbers": [
"2702547"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CENTERPORT VPN-1000",
"product": {
"name": "FL MGUARD CENTERPORT VPN-1000",
"product_id": "CSAFPID-11004",
"product_identification_helper": {
"model_numbers": [
"2702820"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CORE TX",
"product": {
"name": "FL MGUARD CORE TX",
"product_id": "CSAFPID-11005",
"product_identification_helper": {
"model_numbers": [
"2702884"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD CORE TX VPN",
"product": {
"name": "FL MGUARD CORE TX VPN",
"product_id": "CSAFPID-11006",
"product_identification_helper": {
"model_numbers": [
"2702831"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD DELTA TX/TX",
"product": {
"name": "FL MGUARD DELTA TX/TX",
"product_id": "CSAFPID-11007",
"product_identification_helper": {
"model_numbers": [
"2700967"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD DELTA TX/TX VPN",
"product": {
"name": "FL MGUARD DELTA TX/TX VPN",
"product_id": "CSAFPID-11008",
"product_identification_helper": {
"model_numbers": [
"2700968"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD DM UNLIMITED",
"product": {
"name": "FL MGUARD DM UNLIMITED",
"product_id": "CSAFPID-11009",
"product_identification_helper": {
"model_numbers": [
"2981974"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD GT/GT",
"product": {
"name": "FL MGUARD GT/GT",
"product_id": "CSAFPID-11010",
"product_identification_helper": {
"model_numbers": [
"2700197"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD GT/GT VPN",
"product": {
"name": "FL MGUARD GT/GT VPN",
"product_id": "CSAFPID-11011",
"product_identification_helper": {
"model_numbers": [
"2700198"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCI4000",
"product": {
"name": "FL MGUARD PCI4000",
"product_id": "CSAFPID-11012",
"product_identification_helper": {
"model_numbers": [
"2701274"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCI4000 VPN",
"product": {
"name": "FL MGUARD PCI4000 VPN",
"product_id": "CSAFPID-11013",
"product_identification_helper": {
"model_numbers": [
"2701275"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCI4000 VPN/K2",
"product": {
"name": "FL MGUARD PCI4000 VPN/K2",
"product_id": "CSAFPID-11014",
"product_identification_helper": {
"model_numbers": [
"1073944"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCIE4000",
"product": {
"name": "FL MGUARD PCIE4000",
"product_id": "CSAFPID-11015",
"product_identification_helper": {
"model_numbers": [
"2701277"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCIE4000 VPN",
"product": {
"name": "FL MGUARD PCIE4000 VPN",
"product_id": "CSAFPID-11016",
"product_identification_helper": {
"model_numbers": [
"2701278"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD PCIE4000 VPN/K2",
"product": {
"name": "FL MGUARD PCIE4000 VPN/K2",
"product_id": "CSAFPID-11017",
"product_identification_helper": {
"model_numbers": [
"1073940"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS2000 TX/TX-B",
"product": {
"name": "FL MGUARD RS2000 TX/TX-B",
"product_id": "CSAFPID-11018",
"product_identification_helper": {
"model_numbers": [
"2702139"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS2000 TX/TX VPN",
"product": {
"name": "FL MGUARD RS2000 TX/TX VPN",
"product_id": "CSAFPID-11019",
"product_identification_helper": {
"model_numbers": [
"2700642"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS2005 TX VPN",
"product": {
"name": "FL MGUARD RS2005 TX VPN",
"product_id": "CSAFPID-11020",
"product_identification_helper": {
"model_numbers": [
"2701875"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX",
"product": {
"name": "FL MGUARD RS4000 TX/TX",
"product_id": "CSAFPID-11021",
"product_identification_helper": {
"model_numbers": [
"2700634"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX-M",
"product": {
"name": "FL MGUARD RS4000 TX/TX-M",
"product_id": "CSAFPID-11022",
"product_identification_helper": {
"model_numbers": [
"2702470"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX-P",
"product": {
"name": "FL MGUARD RS4000 TX/TX-P",
"product_id": "CSAFPID-11023",
"product_identification_helper": {
"model_numbers": [
"2702259"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX VPN",
"product": {
"name": "FL MGUARD RS4000 TX/TX VPN",
"product_id": "CSAFPID-11024",
"product_identification_helper": {
"model_numbers": [
"2200515"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 TX/TX VPN/K1",
"product": {
"name": "FL MGUARD RS4000 TX/TX VPN/K1",
"product_id": "CSAFPID-11025",
"product_identification_helper": {
"model_numbers": [
"1053403"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4000 VPN/K2",
"product": {
"name": "FL MGUARD RS4000 VPN/K2",
"product_id": "CSAFPID-11026",
"product_identification_helper": {
"model_numbers": [
"1073943"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4004 TX/DTX",
"product": {
"name": "FL MGUARD RS4004 TX/DTX",
"product_id": "CSAFPID-11027",
"product_identification_helper": {
"model_numbers": [
"2701876"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD RS4004 TX/DTX VPN",
"product": {
"name": "FL MGUARD RS4004 TX/DTX VPN",
"product_id": "CSAFPID-11028",
"product_identification_helper": {
"model_numbers": [
"2701877"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD SMART2",
"product": {
"name": "FL MGUARD SMART2",
"product_id": "CSAFPID-11029",
"product_identification_helper": {
"model_numbers": [
"2700640"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD SMART2 VPN",
"product": {
"name": "FL MGUARD SMART2 VPN",
"product_id": "CSAFPID-11030",
"product_identification_helper": {
"model_numbers": [
"2700639"
]
}
}
},
{
"category": "product_name",
"name": "FL MGUARD SMART2 VPN/K1",
"product": {
"name": "FL MGUARD SMART2 VPN/K1",
"product_id": "CSAFPID-11031",
"product_identification_helper": {
"model_numbers": [
"1053405"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 1010",
"product": {
"name": "FL WLAN 1010",
"product_id": "CSAFPID-11032",
"product_identification_helper": {
"model_numbers": [
"2702899"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 1011",
"product": {
"name": "FL WLAN 1011",
"product_id": "CSAFPID-11033",
"product_identification_helper": {
"model_numbers": [
"2702900"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 1100",
"product": {
"name": "FL WLAN 1100",
"product_id": "CSAFPID-11034",
"product_identification_helper": {
"model_numbers": [
"2702534"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 1101",
"product": {
"name": "FL WLAN 1101",
"product_id": "CSAFPID-11035",
"product_identification_helper": {
"model_numbers": [
"2702538"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 2010",
"product": {
"name": "FL WLAN 2010",
"product_id": "CSAFPID-11036",
"product_identification_helper": {
"model_numbers": [
"1119246"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 2011",
"product": {
"name": "FL WLAN 2011",
"product_id": "CSAFPID-11037",
"product_identification_helper": {
"model_numbers": [
"1119248"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 2100",
"product": {
"name": "FL WLAN 2100",
"product_id": "CSAFPID-11038",
"product_identification_helper": {
"model_numbers": [
"2702535"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 2101",
"product": {
"name": "FL WLAN 2101",
"product_id": "CSAFPID-11039",
"product_identification_helper": {
"model_numbers": [
"2702540"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 5100",
"product": {
"name": "FL WLAN 5100",
"product_id": "CSAFPID-11040",
"product_identification_helper": {
"model_numbers": [
"2700718"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 5101",
"product": {
"name": "FL WLAN 5101",
"product_id": "CSAFPID-11041",
"product_identification_helper": {
"model_numbers": [
"2701093"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 5102",
"product": {
"name": "FL WLAN 5102",
"product_id": "CSAFPID-11042",
"product_identification_helper": {
"model_numbers": [
"2701850"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 5110",
"product": {
"name": "FL WLAN 5110",
"product_id": "CSAFPID-11043",
"product_identification_helper": {
"model_numbers": [
"1043193"
]
}
}
},
{
"category": "product_name",
"name": "FL WLAN 5111",
"product": {
"name": "FL WLAN 5111",
"product_id": "CSAFPID-11044",
"product_identification_helper": {
"model_numbers": [
"1043201"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 3G VPN",
"product": {
"name": "TC MGUARD RS2000 3G VPN",
"product_id": "CSAFPID-11045",
"product_identification_helper": {
"model_numbers": [
"2903441"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 4G ATT VPN",
"product": {
"name": "TC MGUARD RS2000 4G ATT VPN",
"product_id": "CSAFPID-11046",
"product_identification_helper": {
"model_numbers": [
"1010464"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 4G VPN",
"product": {
"name": "TC MGUARD RS2000 4G VPN",
"product_id": "CSAFPID-11047",
"product_identification_helper": {
"model_numbers": [
"2903588"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS2000 4G VZW VPN",
"product": {
"name": "TC MGUARD RS2000 4G VZW VPN",
"product_id": "CSAFPID-11048",
"product_identification_helper": {
"model_numbers": [
"1010462"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 3G VPN",
"product": {
"name": "TC MGUARD RS4000 3G VPN",
"product_id": "CSAFPID-11049",
"product_identification_helper": {
"model_numbers": [
"2903440"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 4G ATT VPN",
"product": {
"name": "TC MGUARD RS4000 4G ATT VPN",
"product_id": "CSAFPID-11050",
"product_identification_helper": {
"model_numbers": [
"1010463"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 4G VPN",
"product": {
"name": "TC MGUARD RS4000 4G VPN",
"product_id": "CSAFPID-11051",
"product_identification_helper": {
"model_numbers": [
"2903586"
]
}
}
},
{
"category": "product_name",
"name": "TC MGUARD RS4000 4G VZW VPN",
"product": {
"name": "TC MGUARD RS4000 4G VZW VPN",
"product_id": "CSAFPID-11052",
"product_identification_helper": {
"model_numbers": [
"1010461"
]
}
}
}
],
"category": "product_family",
"name": "Hardware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c=1.5.2",
"product": {
"name": "Firmware \u003c=1.5.2",
"product_id": "CSAFPID-21001"
}
},
{
"category": "product_version_range",
"name": "\u003c=8.8.5",
"product": {
"name": "Firmware \u003c=8.8.5",
"product_id": "CSAFPID-21002"
}
},
{
"category": "product_version_range",
"name": "\u003c=1.13.0.1",
"product": {
"name": "Firmware \u003c=1.13.0.1",
"product_id": "CSAFPID-21003"
}
},
{
"category": "product_version_range",
"name": "\u003c=2.70",
"product": {
"name": "Firmware \u003c=2.70",
"product_id": "CSAFPID-21004"
}
},
{
"category": "product_version_range",
"name": "\u003c=3.21",
"product": {
"name": "Firmware \u003c=3.21",
"product_id": "CSAFPID-21005"
}
},
{
"category": "product_version",
"name": "8.8.6.",
"product": {
"name": "Firmware 8.8.6.",
"product_id": "CSAFPID-22001"
}
},
{
"category": "product_version",
"name": "1.13.0.2",
"product": {
"name": "Firmware 1.13.0.2",
"product_id": "CSAFPID-22002"
}
}
],
"category": "product_family",
"name": "Firmware"
}
],
"category": "vendor",
"name": "PHOENIX CONTACT"
}
],
"product_groups": [
{
"group_id": "CSAFGID-0001",
"product_ids": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037",
"CSAFPID-31038",
"CSAFPID-31039",
"CSAFPID-31040",
"CSAFPID-31041",
"CSAFPID-31042",
"CSAFPID-31043",
"CSAFPID-31044",
"CSAFPID-31045",
"CSAFPID-31046",
"CSAFPID-31047",
"CSAFPID-31048",
"CSAFPID-31049",
"CSAFPID-31050",
"CSAFPID-31051",
"CSAFPID-31052"
],
"summary": "Affected Products"
},
{
"group_id": "CSAFGID-0002",
"product_ids": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004",
"CSAFPID-32005",
"CSAFPID-32006",
"CSAFPID-32007",
"CSAFPID-32008",
"CSAFPID-32009",
"CSAFPID-32010",
"CSAFPID-32011",
"CSAFPID-32012",
"CSAFPID-32013",
"CSAFPID-32014",
"CSAFPID-32015",
"CSAFPID-32016",
"CSAFPID-32017",
"CSAFPID-32018",
"CSAFPID-32019",
"CSAFPID-32020",
"CSAFPID-32021",
"CSAFPID-32022",
"CSAFPID-32023",
"CSAFPID-32024",
"CSAFPID-32025",
"CSAFPID-32026",
"CSAFPID-32027",
"CSAFPID-32028",
"CSAFPID-32029",
"CSAFPID-32030",
"CSAFPID-32031",
"CSAFPID-32032",
"CSAFPID-32033",
"CSAFPID-32034",
"CSAFPID-32035",
"CSAFPID-32036",
"CSAFPID-32037",
"CSAFPID-32038",
"CSAFPID-32039"
],
"summary": "Fixed Products"
}
],
"relationships": [
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=1.5.2 installed on FL MGUARD 1102",
"product_id": "CSAFPID-31001"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=1.5.2 installed on FL MGUARD 1105",
"product_id": "CSAFPID-31002"
},
"product_reference": "CSAFPID-21001",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD CENTERPORT",
"product_id": "CSAFPID-31003"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD CENTERPORT VPN-1000",
"product_id": "CSAFPID-31004"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD CORE TX",
"product_id": "CSAFPID-31005"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11005"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD CORE TX VPN",
"product_id": "CSAFPID-31006"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD DELTA TX/TX",
"product_id": "CSAFPID-31007"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11007"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD DELTA TX/TX VPN",
"product_id": "CSAFPID-31008"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11008"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=1.13.0.1 installed on FL MGUARD DM UNLIMITED",
"product_id": "CSAFPID-31009"
},
"product_reference": "CSAFPID-21003",
"relates_to_product_reference": "CSAFPID-11009"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD GT/GT",
"product_id": "CSAFPID-31010"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11010"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD GT/GT VPN",
"product_id": "CSAFPID-31011"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11011"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD PCI4000",
"product_id": "CSAFPID-31012"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11012"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD PCI4000 VPN",
"product_id": "CSAFPID-31013"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11013"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD PCI4000 VPN/K2",
"product_id": "CSAFPID-31014"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11014"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD PCIE4000",
"product_id": "CSAFPID-31015"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11015"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD PCIE4000 VPN",
"product_id": "CSAFPID-31016"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11016"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD PCIE4000 VPN/K2",
"product_id": "CSAFPID-31017"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11017"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS2000 TX/TX-B",
"product_id": "CSAFPID-31018"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11018"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS2000 TX/TX VPN",
"product_id": "CSAFPID-31019"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11019"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS2005 TX VPN",
"product_id": "CSAFPID-31020"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11020"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4000 TX/TX",
"product_id": "CSAFPID-31021"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11021"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4000 TX/TX-M",
"product_id": "CSAFPID-31022"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11022"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4000 TX/TX-P",
"product_id": "CSAFPID-31023"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11023"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4000 TX/TX VPN",
"product_id": "CSAFPID-31024"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11024"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4000 TX/TX VPN/K1",
"product_id": "CSAFPID-31025"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11025"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4000 VPN/K2",
"product_id": "CSAFPID-31026"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11026"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4004 TX/DTX",
"product_id": "CSAFPID-31027"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11027"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD RS4004 TX/DTX VPN",
"product_id": "CSAFPID-31028"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11028"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD SMART2",
"product_id": "CSAFPID-31029"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11029"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD SMART2 VPN",
"product_id": "CSAFPID-31030"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11030"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on FL MGUARD SMART2 VPN/K1",
"product_id": "CSAFPID-31031"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11031"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 1010",
"product_id": "CSAFPID-31032"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11032"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 1011",
"product_id": "CSAFPID-31033"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11033"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 1100",
"product_id": "CSAFPID-31034"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11034"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 1101",
"product_id": "CSAFPID-31035"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11035"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 2010",
"product_id": "CSAFPID-31036"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11036"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 2011",
"product_id": "CSAFPID-31037"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11037"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 2100",
"product_id": "CSAFPID-31038"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11038"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=2.70 installed on FL WLAN 2101",
"product_id": "CSAFPID-31039"
},
"product_reference": "CSAFPID-21004",
"relates_to_product_reference": "CSAFPID-11039"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=3.21 installed on FL WLAN 5100",
"product_id": "CSAFPID-31040"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11040"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=3.21 installed on FL WLAN 5101",
"product_id": "CSAFPID-31041"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11041"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=3.21 installed on FL WLAN 5102",
"product_id": "CSAFPID-31042"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11042"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=3.21 installed on FL WLAN 5110",
"product_id": "CSAFPID-31043"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11043"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=3.21 installed on FL WLAN 5111",
"product_id": "CSAFPID-31044"
},
"product_reference": "CSAFPID-21005",
"relates_to_product_reference": "CSAFPID-11044"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS2000 3G VPN",
"product_id": "CSAFPID-31045"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11045"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS2000 4G ATT VPN",
"product_id": "CSAFPID-31046"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11046"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS2000 4G VPN",
"product_id": "CSAFPID-31047"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11047"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS2000 4G VZW VPN",
"product_id": "CSAFPID-31048"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11048"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS4000 3G VPN",
"product_id": "CSAFPID-31049"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11049"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS4000 4G ATT VPN",
"product_id": "CSAFPID-31050"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11050"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS4000 4G VPN",
"product_id": "CSAFPID-31051"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11051"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware \u003c=8.8.5 installed on TC MGUARD RS4000 4G VZW VPN",
"product_id": "CSAFPID-31052"
},
"product_reference": "CSAFPID-21002",
"relates_to_product_reference": "CSAFPID-11052"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD 1102",
"product_id": "CSAFPID-32001"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11001"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD 1105",
"product_id": "CSAFPID-32002"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11002"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD CENTERPORT",
"product_id": "CSAFPID-32003"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11003"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD CENTERPORT VPN-1000",
"product_id": "CSAFPID-32004"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11004"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD CORE TX",
"product_id": "CSAFPID-32005"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11005"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD CORE TX VPN",
"product_id": "CSAFPID-32006"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11006"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD DELTA TX/TX",
"product_id": "CSAFPID-32007"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11007"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD DELTA TX/TX VPN",
"product_id": "CSAFPID-32008"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11008"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 1.13.0.2 installed on FL MGUARD DM UNLIMITED",
"product_id": "CSAFPID-32009"
},
"product_reference": "CSAFPID-22002",
"relates_to_product_reference": "CSAFPID-11009"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD GT/GT",
"product_id": "CSAFPID-32010"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11010"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD GT/GT VPN",
"product_id": "CSAFPID-32011"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11011"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD PCI4000",
"product_id": "CSAFPID-32012"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11012"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD PCI4000 VPN",
"product_id": "CSAFPID-32013"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11013"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD PCI4000 VPN/K2",
"product_id": "CSAFPID-32014"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11014"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD PCIE4000",
"product_id": "CSAFPID-32015"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11015"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD PCIE4000 VPN",
"product_id": "CSAFPID-32016"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11016"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD PCIE4000 VPN/K2",
"product_id": "CSAFPID-32017"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11017"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS2000 TX/TX-B",
"product_id": "CSAFPID-32018"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11018"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS2000 TX/TX VPN",
"product_id": "CSAFPID-32019"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11019"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS2005 TX VPN",
"product_id": "CSAFPID-32020"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11020"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4000 TX/TX",
"product_id": "CSAFPID-32021"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11021"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4000 TX/TX-M",
"product_id": "CSAFPID-32022"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11022"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4000 TX/TX-P",
"product_id": "CSAFPID-32023"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11023"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4000 TX/TX VPN",
"product_id": "CSAFPID-32024"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11024"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4000 TX/TX VPN/K1",
"product_id": "CSAFPID-32025"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11025"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4000 VPN/K2",
"product_id": "CSAFPID-32026"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11026"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4004 TX/DTX",
"product_id": "CSAFPID-32027"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11027"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD RS4004 TX/DTX VPN",
"product_id": "CSAFPID-32028"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11028"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD SMART2",
"product_id": "CSAFPID-32029"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11029"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD SMART2 VPN",
"product_id": "CSAFPID-32030"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11030"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on FL MGUARD SMART2 VPN/K1",
"product_id": "CSAFPID-32031"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11031"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS2000 3G VPN",
"product_id": "CSAFPID-32032"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11045"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS2000 4G ATT VPN",
"product_id": "CSAFPID-32033"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11046"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS2000 4G VPN",
"product_id": "CSAFPID-32034"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11047"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS2000 4G VZW VPN",
"product_id": "CSAFPID-32035"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11048"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS4000 3G VPN",
"product_id": "CSAFPID-32036"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11049"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS4000 4G ATT VPN",
"product_id": "CSAFPID-32037"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11050"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS4000 4G VPN",
"product_id": "CSAFPID-32038"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11051"
},
{
"category": "installed_on",
"full_product_name": {
"name": "Firmware 8.8.6. installed on TC MGUARD RS4000 4G VZW VPN",
"product_id": "CSAFPID-32039"
},
"product_reference": "CSAFPID-22001",
"relates_to_product_reference": "CSAFPID-11052"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-0778",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "description",
"text": "The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).",
"title": "Vulnerability Description"
}
],
"product_status": {
"fixed": [
"CSAFPID-32001",
"CSAFPID-32002",
"CSAFPID-32003",
"CSAFPID-32004",
"CSAFPID-32005",
"CSAFPID-32006",
"CSAFPID-32007",
"CSAFPID-32008",
"CSAFPID-32009",
"CSAFPID-32010",
"CSAFPID-32011",
"CSAFPID-32012",
"CSAFPID-32013",
"CSAFPID-32014",
"CSAFPID-32015",
"CSAFPID-32016",
"CSAFPID-32017",
"CSAFPID-32018",
"CSAFPID-32019",
"CSAFPID-32020",
"CSAFPID-32021",
"CSAFPID-32022",
"CSAFPID-32023",
"CSAFPID-32024",
"CSAFPID-32025",
"CSAFPID-32026",
"CSAFPID-32027",
"CSAFPID-32028",
"CSAFPID-32029",
"CSAFPID-32030",
"CSAFPID-32031",
"CSAFPID-32032",
"CSAFPID-32033",
"CSAFPID-32034",
"CSAFPID-32035",
"CSAFPID-32036",
"CSAFPID-32037",
"CSAFPID-32038",
"CSAFPID-32039"
],
"known_affected": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037",
"CSAFPID-31038",
"CSAFPID-31039",
"CSAFPID-31040",
"CSAFPID-31041",
"CSAFPID-31042",
"CSAFPID-31043",
"CSAFPID-31044",
"CSAFPID-31045",
"CSAFPID-31046",
"CSAFPID-31047",
"CSAFPID-31048",
"CSAFPID-31049",
"CSAFPID-31050",
"CSAFPID-31051",
"CSAFPID-31052"
]
},
"remediations": [
{
"category": "mitigation",
"details": "To reduce the possibility of an attack, affected functionality could be deactivated or used only in a way that it is not exposed on untrusted interfaces.",
"group_ids": [
"CSAFGID-0001"
]
},
{
"category": "vendor_fix",
"details": "This vulnerability is fixed in firmware version 8.8.6. We strongly recommend all affected FL MGUARD and TC MGUARD users to upgrade to this or a later version.\n\nPHOENIX CONTACT strongly recommends upgrading FL MGUARD DM UNLIMITED to version 1.13.0.2 or higher, which fixes this vulnerability.\n\nFor FL WLAN devices the vulnerability will be fixed in the next regular release. A release date is not yet defined.",
"group_ids": [
"CSAFGID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"environmentalScore": 7.5,
"environmentalSeverity": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.5,
"temporalSeverity": "HIGH",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-31001",
"CSAFPID-31002",
"CSAFPID-31003",
"CSAFPID-31004",
"CSAFPID-31005",
"CSAFPID-31006",
"CSAFPID-31007",
"CSAFPID-31008",
"CSAFPID-31009",
"CSAFPID-31010",
"CSAFPID-31011",
"CSAFPID-31012",
"CSAFPID-31013",
"CSAFPID-31014",
"CSAFPID-31015",
"CSAFPID-31016",
"CSAFPID-31017",
"CSAFPID-31018",
"CSAFPID-31019",
"CSAFPID-31020",
"CSAFPID-31021",
"CSAFPID-31022",
"CSAFPID-31023",
"CSAFPID-31024",
"CSAFPID-31025",
"CSAFPID-31026",
"CSAFPID-31027",
"CSAFPID-31028",
"CSAFPID-31029",
"CSAFPID-31030",
"CSAFPID-31031",
"CSAFPID-31032",
"CSAFPID-31033",
"CSAFPID-31034",
"CSAFPID-31035",
"CSAFPID-31036",
"CSAFPID-31037",
"CSAFPID-31038",
"CSAFPID-31039",
"CSAFPID-31040",
"CSAFPID-31041",
"CSAFPID-31042",
"CSAFPID-31043",
"CSAFPID-31044",
"CSAFPID-31045",
"CSAFPID-31046",
"CSAFPID-31047",
"CSAFPID-31048",
"CSAFPID-31049",
"CSAFPID-31050",
"CSAFPID-31051",
"CSAFPID-31052"
]
}
],
"title": "CVE-2022-0778"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…