Colleagues, The CVE Program is happy to announce two (2) new CNAs and (1) new CNA-LR: Organization Name: CPAN Security Group Org Short Name: CPANSec Organization Location: Canada CNA Scope: Vulnerabilities in Perl and CPAN Modules (including End-of-Life Perl versions) found at https://perl.org, https://cpan.org, or https://metacpan.org, excluding distributions of Perl or CPAN Modules maintained by third-party redistributors. Top-Level Root: MITRE Disclosure Policy location: https://security.metacpan.org/docs/cna-disclosure-policy.html Advisory location: https://lists.security.metacpan.org/cve-announce/ Public point of contact: cve-requ...@security.metacpan.org<mailto:cve-requ...@security.metacpan.org> CNA Type: Open Source Organization Name: Saviynt Inc. Org Short Name: Saviynt Organization Location: USA CNA Scope: Vulnerabilities discovered in Saviynt products or vulnerabilities reported to Saviynt Labs that are not in another CNA’s scope. Top-Level Root: MITRE Disclosure Policy location: https://saviynt.com/saviynt-responsible-disclosure-policy/ Advisory location: https://trust.saviynt.com/?itemName=environment_social_governance&source=click Public point of contact: secur...@saviynt.com<mailto:secur...@saviynt.com> CNA Type: Vendor Organization Name: Red Hat CNA-LR Org Short Name: redhat Organization Location: USA CNA-LR Scope: Vulnerabilities in software developed by a CNA within the Red Hat Root hierarchy. Root: Red Hat Top-Level Root: MITRE Disclosure Policy location: https://access.redhat.com/security/red_hat_cna_lr_operational_guide Advisory location: https://access.redhat.com/security/security-updates/#/security-advisories Public point of contact: cnalr-coordinat...@redhat.com<mailto:cnalr-coordinat...@redhat.com> Community Announcement: https://cve.mitre.rip/Media/News/item/blog/2025/02/25/Red-Hat-Root-Adds-CNA-LR
Total CNAs: 445 CNAs (442 CNAs and 3 CNA-LRs) Total Countries: 40 (+ 1 no country affiliation) Respectfully, CVE Program Secretariat cve-prog-secretar...@mitre.org<mailto:cve-prog-secretar...@mitre.org> [A picture containing text, clipart Description automatically generated]
