{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-2884", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "state": "PUBLISHED", "assignerShortName": "certcc", "dateReserved": "2025-03-27T21:01:41.908Z", "datePublished": "2025-06-10T17:29:19.463Z", "dateUpdated": "2026-04-14T08:58:06.200Z"}, "containers": {"cna": {"title": "Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation", "descriptions": [{"lang": "en", "value": "TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0"}], "source": {"discovery": "INTERNAL"}, "affected": [{"vendor": "Trusted Computing Group", "product": "TPM2.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.83", "versionType": "custom"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-125 Out-of-bounds Read"}]}], "references": [{"url": "https://trustedcomputinggroup.org/about/security/"}, {"url": "https://trustedcomputinggroup.org/wp-content/uploads/TPM2.0-Library-Spec-v1.83-Errata_v1_pub.pdf", "name": "TPM2.0 Errata"}, {"url": "https://trustedcomputinggroup.org/wp-content/uploads/VRT0009-Advisory-FINAL.pdf", "name": "Vendor Advisory"}, {"url": "https://github.com/stefanberger/libtpms/commit/04b2d8e9afc0a9b6bffe562a23e58c0de11532d1", "name": "Vendor Patch"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-49133", "name": "Related CVE"}], "x_generator": {"engine": "VINCE 3.0.20", "env": "prod", "origin": "https://cveawg.mitre.org/api/cve/CVE-2025-2884"}, "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2025-06-13T18:22:21.856Z"}, "metrics": [{"other": {"type": "ssvcV1_0_1", "content": {"id": "CVE-2025-2884", "selections": [{"namespace": "ssvc", "version": "1.0.0", "values": ["none"], "name": "Exploitation"}, {"namespace": "ssvc", "version": "2.0.0", "values": ["no"], "name": "Automatable"}, {"namespace": "ssvc", "version": "1.0.0", "values": ["partial"], "name": "Technical Impact"}, {"namespace": "ssvc", "version": "1.0.0", "values": ["medium"], "name": "Mission & Well-being"}], "timestamp": "2025-06-13T17:22:30.584Z"}}}]}, "adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01209.html"}, {"url": "https://www.kb.cert.org/vuls/id/282450"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2025-06-10T19:02:29.811Z"}}, {"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-125", "lang": "en", "description": "CWE-125 Out-of-bounds Read"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.6, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2025-06-13T01:41:10.489446Z", "id": "CVE-2025-2884", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-13T01:46:13.802Z"}}, {"x_adpType": "supplier", "providerMetadata": {"orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e", "shortName": "siemens-SADP", "dateUpdated": "2026-04-14T08:58:06.200Z"}, "affected": [{"vendor": "Siemens", "product": "SIMATIC CN 4100", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC Field PG M5", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC Field PG M6", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-32A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-39A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-56A", "versions": [{"status": "affected", "version": "0", "lessThan": "V32.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-59A", "versions": [{"status": "affected", "version": "0", "lessThan": "V32.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC MD-57A", "versions": [{"status": "affected", "version": "0", "lessThan": "V30.01.10", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC PX-32A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC PX-39A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC PX-39A PRO", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC RW-528A", "versions": [{"status": "affected", "version": "0", "lessThan": "V34.01.02", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC RW-548A", "versions": [{"status": "affected", "version": "0", "lessThan": "V34.01.02", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC227E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC277E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC427E", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC477E", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC477E PRO", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC627E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC647E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC677E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC847E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC ITP1000", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIPLUS IPC427E", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}], "references": [{"url": "https://cert-portal.siemens.com/productcert/html/ssa-628843.html"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01209.html"}, {"url": "https://www.kb.cert.org/vuls/id/282450"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2025-06-10T19:02:29.811Z"}}, {"affected": [{"vendor": "Siemens", "product": "SIMATIC CN 4100", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC Field PG M5", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC Field PG M6", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-32A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-39A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-56A", "versions": [{"status": "affected", "version": "0", "lessThan": "V32.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC BX-59A", "versions": [{"status": "affected", "version": "0", "lessThan": "V32.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC MD-57A", "versions": [{"status": "affected", "version": "0", "lessThan": "V30.01.10", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC PX-32A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC PX-39A", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC PX-39A PRO", "versions": [{"status": "affected", "version": "0", "lessThan": "V29.01.09", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC RW-528A", "versions": [{"status": "affected", "version": "0", "lessThan": "V34.01.02", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC RW-548A", "versions": [{"status": "affected", "version": "0", "lessThan": "V34.01.02", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC227E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC277E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC427E", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC477E", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC477E PRO", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC627E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC647E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC677E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC IPC847E", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIMATIC ITP1000", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unknown"}, {"vendor": "Siemens", "product": "SIPLUS IPC427E", "versions": [{"status": "affected", "version": "0", "lessThan": "V21.01.20", "versionType": "custom"}], "defaultStatus": "unknown"}], "x_adpType": "supplier", "references": [{"url": "https://cert-portal.siemens.com/productcert/html/ssa-628843.html"}], "providerMetadata": {"orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e", "shortName": "siemens-SADP", "dateUpdated": "2026-04-14T08:58:06.200Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.6, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-2884", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-06-13T01:41:10.489446Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-125", "description": "CWE-125 Out-of-bounds Read"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-06-11T15:04:54.186Z"}}], "cna": {"title": "Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation", "source": {"discovery": "INTERNAL"}, "metrics": [{"other": {"type": "ssvcV1_0_1", "content": {"id": "CVE-2025-2884", "timestamp": "2025-06-13T17:22:30.584Z", "selections": [{"name": "Exploitation", "values": ["none"], "version": "1.0.0", "namespace": "ssvc"}, {"name": "Automatable", "values": ["no"], "version": "2.0.0", "namespace": "ssvc"}, {"name": "Technical Impact", "values": ["partial"], "version": "1.0.0", "namespace": "ssvc"}, {"name": "Mission & Well-being", "values": ["medium"], "version": "1.0.0", "namespace": "ssvc"}]}}}], "affected": [{"vendor": "Trusted Computing Group", "product": "TPM2.0", "versions": [{"status": "affected", "version": "0", "lessThan": "1.83", "versionType": "custom"}]}], "references": [{"url": "https://trustedcomputinggroup.org/about/security/"}, {"url": "https://trustedcomputinggroup.org/wp-content/uploads/TPM2.0-Library-Spec-v1.83-Errata_v1_pub.pdf", "name": "TPM2.0 Errata"}, {"url": "https://trustedcomputinggroup.org/wp-content/uploads/VRT0009-Advisory-FINAL.pdf", "name": "Vendor Advisory"}, {"url": "https://github.com/stefanberger/libtpms/commit/04b2d8e9afc0a9b6bffe562a23e58c0de11532d1", "name": "Vendor Patch"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-49133", "name": "Related CVE"}], "x_generator": {"env": "prod", "engine": "VINCE 3.0.20", "origin": "https://cveawg.mitre.org/api/cve/CVE-2025-2884"}, "descriptions": [{"lang": "en", "value": "TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-125 Out-of-bounds Read"}]}], "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2025-06-13T18:22:21.856Z"}}}, "cveMetadata": {"cveId": "CVE-2025-2884", "state": "PUBLISHED", "dateUpdated": "2026-04-14T08:58:06.200Z", "dateReserved": "2025-03-27T21:01:41.908Z", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "datePublished": "2025-06-10T17:29:19.463Z", "assignerShortName": "certcc"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0"}, {"lang": "es", "value": "La funci\u00f3n auxiliar CryptHmacSign de la implementaci\u00f3n de referencia TCG TPM2.0 es vulnerable a lecturas fuera de los l\u00edmites debido a la falta de validaci\u00f3n del esquema de firma con el algoritmo de la clave de firma. Consulte la errata 1.83 del est\u00e1ndar TCG TPM2.0."}], "id": "CVE-2025-2884", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.3, "impactScore": 5.2, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2025-06-10T18:15:30.617", "references": [{"source": "cret@cert.org", "url": "https://github.com/stefanberger/libtpms/commit/04b2d8e9afc0a9b6bffe562a23e58c0de11532d1"}, {"source": "cret@cert.org", "url": "https://trustedcomputinggroup.org/about/security/"}, {"source": "cret@cert.org", "url": "https://trustedcomputinggroup.org/wp-content/uploads/TPM2.0-Library-Spec-v1.83-Errata_v1_pub.pdf"}, {"source": "cret@cert.org", "url": "https://trustedcomputinggroup.org/wp-content/uploads/VRT0009-Advisory-FINAL.pdf"}, {"source": "cret@cert.org", "url": "https://www.cve.org/CVERecord?id=CVE-2025-49133"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01209.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.kb.cert.org/vuls/id/282450"}, {"source": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e", "url": "https://cert-portal.siemens.com/productcert/html/ssa-628843.html"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-125"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-20T17:03:24.832080+00:00", "value": {"mitigation_remediation": ["Upgrade the TPM2.0 reference implementation to the latest errata revision (1.83) which includes the bounds\u2011check fix.", "If upgrading the vendor library is not immediately possible, apply the specific commit (hash 04b2d8e9) from the libtpms repository that patches the CryptHmacSign helper.", "Configure TPM client applications to validate the signature scheme against the signing key algorithm before invoking the helper, to enforce proper input validation."], "summary": {"action": "Assess", "impact": "Information Disclosure"}, "threat_synthesis": {"affected_systems": "The affected vendor is the Trusted Computing Group, providing the TPM2.0 reference implementation library. Any system that uses this reference implementation, particularly the versions prior to the errata revision 1.83, is susceptible. Exact version details are not disclosed beyond the reference to the errata release, indicating that earlier builds lack the necessary bounds checks.", "description_and_impact": "The tracked vulnerability is an out\u2011of\u2011bounds read located in the CryptHmacSign helper function of the TCG TPM2.0 reference implementation. The issue arises because the function does not verify that the supplied signature scheme matches the algorithm used by the signature key, allowing an attacker to read memory contents beyond the bounds of a buffer. This read can potentially expose sensitive data stored in memory, thus compromising confidentiality. The weakness is identified as CWE\u2011125.", "risk_and_exploitability": "With a CVSS score of 6.6, the risk is considered moderate. The EPSS score of less than 1% suggests a low but non\u2011zero probability of exploitation. The vulnerability is not listed in CISA\u2019s KEV catalog, reducing immediate urgency. The attack likely requires a privilege that allows crafting a malicious signature or manipulating input to the CryptHmacSign function, which may be achievable through an application that interfaces directly with the TPM. Further exploitation beyond information disclosure is not documented in the available data."}}}}, "created": "2026-04-20T17:15:12.547743+00:00", "updated": "2026-04-20T17:15:12.547756+00:00", "vendors": []}