CNA Rules Version 4.0 Update and Transition | allinfosecnews.com

May 7, 2024, 10:43 p.m. | CVE Program Blog

Stories by CVE Program Blog on Medium medium.com

The CVE Program, Board members and CNA staff, have been working on rewriting the CVE Numbering Authority (CNA) Operational Rules Version 4.0 (PDF) that CNAs use to help them know how to assign CVE IDs. This work has been ongoing since mid-2022.

The team devoted many hours to this important task. We wanted to create a sustainable set of rules that were well organized and would be able to exist in a more agile world so that small, important changes …

authority board board members cna cve cybersecurity ids important information security information technology operational pdf program rules staff task team transition update version vulnerability vulnerability management work working

More from medium.com / Stories by CVE Program Blog on Medium

Videos from “CVE/FIRST VulnCon 2024” Now Available 4 days, 21 hours ago | medium.com

channel cve cybersecurity global +13

CVE Record Format Version 5.1.0 and CVE Services Version 2.3.0 Now Available 1 week, 2 days ago | medium.com

cve cybersecurity information information security +9

CNA Rules Version 4.0 Update and Transition 1 week, 4 days ago | medium.com

authority board board members cna +20

Support for Legacy CVE Download Formats to End on June 30, 2024 2 weeks, 4 days ago | medium.com

csv cve cybersecurity download +12

We Speak CVE Podcast — “Swimming in Vulns (or, Fun with CVE Data Analysis)” 2 weeks, 4 days ago | medium.com

cybersecurity information security information technology vulnerability +1

New CVE Record Format Enables Additional Data Fields at Time of Disclosure 3 weeks, 1 day ago | medium.com

cve cybersecurity data disclosure +14

We Speak CVE Podcast — “Meet the 3 New CVE Board Members” 1 month, 1 week ago | medium.com

cybersecurity information security information technology vulnerability +1

Our CVE Story: Ericsson’s Journey as a CVE Numbering Authority (CNA) 1 month, 2 weeks ago | medium.com

authority authors cna cve +26

We Speak CVE Podcast — “CVE Records States and Tags” 1 month, 3 weeks ago | medium.com

cybersecurity information security information technology vulnerability +1

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Senior Security Analyst

@ Oracle | United States

View on infosec-jobs.com

Associate Vulnerability Management Specialist

@ Diebold Nixdorf | Hyderabad, Telangana, India

View on infosec-jobs.com

Cybersecurity Architect, Infrastructure & Technical Security

@ KCB Group | Kenya

View on infosec-jobs.com