Colleagues, The CVE Program is happy to announce four (4) new CNAs: Organization Name: Dfinity Foundation Org Short Name: Dfinity Organization Location: Switzerland Scope: All Internet Computer projects as found on the following GitHub pages: https://github.com/dfinity and https://github.com/dfinity-lab. Top-Level Root: MITRE Disclosure Policy location: https://github.com/dfinity/ic/security/policy Advisory location: https://github.com/dfinity/ic/security/advisories Public point of contact: securityb...@dfinity.org<mailto:securityb...@dfinity.org> CNA Type: Vendor, Open Source Organization Name: Network Optix Org Short Name: NX Organization Location: USA Scope: All Network Optix products, including https://www.networkoptix.com/nx-witness and https://www.networkoptix.com/powered-by-nx. Top-Level Root: MITRE Disclosure Policy location: https://www.networkoptix.com/vulnerability-disclosure-program Advisory location: https://www.networkoptix.com/blog Public point of contact: secur...@networkoptix.com<mailto:secur...@networkoptix.com> CNA Type: Vendor, Open Source Organization Name: OTORIO LTD. Org Short Name: OTORIO Organization Location: Israel Scope: All OTORIO products, as well as vulnerabilities in third-party software discovered by OTORIO that are not in another CNA’s scope. Root: CISA ICS Top-Level Root: CISA Disclosure Policy location: https://www.otorio.com/vulnerability-disclosure-policy/ Advisory location: https://www.otorio.com/vulnerability-disclosure/ Public point of contact: productc...@otorio.com<mailto:productc...@otorio.com> CNA Type: Vendor, Researcher Organization Name: SEC Consult Vulnerability Lab Org Short Name: SEC-VLab Organization Location: Austria Scope: All vulnerabilities discovered in third-party hardware/software by SEC Consult Vulnerability Lab (part of SEC Consult, an Eviden business), which are not in another CNA’s scope. Top-Level Root: MITRE Disclosure Policy location: https://sec-consult.com/vulnerability-lab/responsible-disclosure-policy/ Advisory location: https://sec-consult.com/vulnerability-lab/ Public point of contact: security-resea...@sec-consult.com<mailto:security-resea...@sec-consult.com> CNA Type: Researcher
Total CNAs: 334 (332 CNAs and 2 CNA-LRs) Total Countries: 37 (+ 1 no country affiliation) Respectfully, CVE Program Secretariat cve-prog-secretar...@mitre.org<mailto:cve-prog-secretar...@mitre.org> [A picture containing text, clipart Description automatically generated]
