all InfoSec news
A Clarification on CVE Records with a DISPUTED Tag
Jan. 30, 2024, 10:04 p.m. | CVE Program Blog
Stories by CVE Program Blog on Medium medium.com
By Shannon Sabens, CVE Board member and Outreach and Communications Working Group (OCWG) Co-Chair
Several years ago, it was clear to the CVE Board that we would need a specific process for the inevitable disputes that may arise around vulnerability reporting. Potential scenarios may be obvious to many, but a basic example would be when a finder reports a potential vulnerability to a vendor/maintainer that agrees a bug exists but disagrees that it’s a potential security hole.
CVE Record Dispute …
cybersecurity information security infosec vulnerability vulnerability management
More from medium.com / Stories by CVE Program Blog on Medium
Videos from “CVE/FIRST VulnCon 2024” Now Available
2 weeks, 4 days ago |
medium.com
CNA Rules Version 4.0 Update and Transition
3 weeks, 4 days ago |
medium.com
Our CVE Story: Ericsson’s Journey as a CVE Numbering Authority (CNA)
1 month, 4 weeks ago |
medium.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)