CVE Program

NETGEAR is now a CVE Numbering Authority (CNA) assigning CVE IDs vulnerabilities in all products from NETGEAR, its subsidiaries, and third-party components used in NETGEAR products that are not in another CNA’s scope    https://lnkd.in/e2BcWA3s    #cve #cna #vulnerability #vulnerabilitymanagement #informationsecurity #cybersecurity

Ever wonder how CVE and CWE can work together to make vulnerability management more strategic and effective? The latest "We Speak CVE" podcast explains how CVE pinpoints the incident, while CWE uncovers the technical root cause. By enriching CVE Records with CWE, organizations can move beyond simple classification and start tackling the underlying issues that lead to vulnerabilities. This episode is packed with practical advice for CNAs and anyone interested in secure-by-design approaches, including guidance on root cause mapping and available resources. The discussion also highlights how catching and fixing recurring weaknesses early – by leveraging CWE root cause mapping – can significantly reduce the costs associated with urgent incident response and patching. If you’re looking to make your vulnerability management program more effective, actionable, and cost-efficient, check out the new episode to learn how you can shift left – not just in code, but in thinking. Check it out: https://lnkd.in/eHVaH-a8 #CVE #CWE #VulnerabilityManagement #Cybersecurity #Infosec #AppSec

674 CVE Records + severity scores when available in CISA’s Vulnerability Summary bulletin for the week of July 28, 2025    https://lnkd.in/gm9WNtaM    #CVE #CVEID #CVSS #CWE #Vulnerability #VulnerabilityManagement #HSSEDI #CISA

We Speak CVE Podcast episode 28 now available!  “Mapping the Root Causes of CVEs”  https://lnkd.in/eavDfjny     #CVE #CWE #Vulnerability #VulnerabilityManagement #Cybersecurity

Minutes from the CVE Board teleconference meeting on July 23 are now available    https://lnkd.in/eicC6Gnm      #cve #vulnerability #vulnerabilitymanagement #hssedi #cisa #infosec #cybersecurity

“CNA Enrichment Recognition” - 242 CNAs on the list for August 4, 2025    Published monthly, this list recognizes those CVE Numbering Authorities (#CNAs) actively providing #CVSS and #CWE vulnerability data in their #CVE Records  https://lnkd.in/edZP9xiw

Legion of the Bouncy Castle is now a CVE Numbering Authority (CNA) assigning CVE IDs for Legion of the Bouncy Castle issues only     https://lnkd.in/eMQdXaaq    #cve #cna #vulnerability #vulnerabilitymanagement #cybersecurity #opensource

A BIG WELCOME to these 7 CVE Numbering Authority (#CNA) partners that joined the #CVE Program in July!!! * Altium   * Arteche  * Fermax  * Maritime Hacking Village  * The Rust Project  * TCS-CERT  * TYPO3 Join: https://lnkd.in/g96G3Qih

832 CVE Records + severity scores when available in CISA’s Vulnerability Summary bulletin for the week of July 21, 2025    https://lnkd.in/gX5nZQ4V      #CVE #CVEID #CVSS #CWE #Vulnerability #VulnerabilityManagement #HSSEDI #CISA

Introducing the “CVE Consumer Working Group” We want to understand the joys & pains of working with #CVE data from the people who live it every day & help shape the future of CVEs Interested?  https://lnkd.in/eM5kAxMN