all InfoSec news
CNA Rules Version 4.0 Update and Transition
Stories by CVE Program Blog on Medium medium.com
The CVE Program, Board members and CNA staff, have been working on rewriting the CVE Numbering Authority (CNA) Operational Rules Version 4.0 (PDF) that CNAs use to help them know how to assign CVE IDs. This work has been ongoing since mid-2022.
The team devoted many hours to this important task. We wanted to create a sustainable set of rules that were well organized and would be able to exist in a more agile world so that small, important changes …
authority board board members cna cve cybersecurity ids important information security information technology operational pdf program rules staff task team transition update version vulnerability vulnerability management work working