Skip to content

Commit 383a583

Browse files
rrobergerroberge
authored
#3551 CNA Enrichment Recognition List for 12/16/24 (#3363)
1 parent 525a444 commit 383a583

File tree

2 files changed

+46
-7
lines changed

2 files changed

+46
-7
lines changed

src/assets/data/news.json

Lines changed: 30 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,35 @@
11
{
22
"currentNews": [
3+
{
4+
"id": 455,
5+
"newsType": "blog",
6+
"title": "Vulnerability Data Enrichment for CVE Records: 233 CNAs on the Enrichment Recognition List for December 16, 2024",
7+
"urlKeywords": "CNA Enrichment Recognition List Update",
8+
"date": "2024-12-17",
9+
"author": {
10+
"name": "CVE Program",
11+
"organization": {
12+
"name": "CVE Program",
13+
"url": ""
14+
},
15+
"title": "",
16+
"bio": ""
17+
},
18+
"description": [
19+
{
20+
"contentnewsType": "paragraph",
21+
"content": "The “<a href='/About/Metrics#CNAEnrichmentRecognition'>CNA Enrichment Recognition List</a>” for December 16, 2024, is now available with 233 CNAs listed. Published every two weeks on the CVE website, the list recognizes those <a href='/ProgramOrganization/CNAs'>CVE Numbering Authorities (CNAs)</a> that are actively providing enhanced vulnerability data in their <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a>. CNAs are added to the list if they provide <a href='https://www.first.org/cvss/' target='_blank'>Common Vulnerability Scoring System (CVSS)</a> and <a href='https://cwe.mitre.org/' target='_blank'>Common Weakness Enumeration (CWE&trade;)</a> information 98% of the time or more within the two-week period of their last published CVE Record."
22+
},
23+
{
24+
"contentnewsType": "paragraph",
25+
"content": "For more about the recognition list, see “<a href='/Media/News/item/blog/2024/09/10/CNA-Enrichment-Recognition-List'>Recognition for CNAs Actively Providing Vulnerability Data Enrichment for CVE Records</a>.” To learn more about vulnerability information types like CVSS and CWE, see the <a href='/CVERecord/UserGuide'>CVE Record User Guide</a>. View the most current CNA Enrichment Recognition List on the CVE website Metrics page <a href='/About/Metrics#CNAEnrichmentRecognition'>here</a>."
26+
},
27+
{
28+
"contentnewsType": "paragraph",
29+
"content": "CNA Enrichment Recognition List for December 16, 2024, with 233 CNAs listed: <ul><li>9front Systems</li><li>Absolute Software</li><li>Acronis International GmbH</li><li>Adobe Systems Incorporated</li><li>Advanced Micro Devices Inc.</li><li>AlgoSec</li><li>Amazon</li><li>AMI</li><li>AppCheck Ltd.</li><li>ARC Informatique</li><li>Arista Networks, Inc.</li><li>Asea Brown Boveri Ltd.</li><li>ASR Microelectronics Co., Ltd.</li><li>ASUSTeK Computer Incorporation</li><li>Autodesk</li><li>Automotive Security Research Group (ASRG)</li><li>Avaya Inc.</li><li>Axis Communications AB</li><li>Baicells Technologies Co., Ltd.</li><li>Baidu, Inc.</li><li>Baxter Healthcare</li><li>BeyondTrust Inc.</li><li>Bitdefender</li><li>BlackBerry</li><li>Brocade Communications Systems, Inc.</li><li>Canon EMEA</li><li>Canon Inc.</li><li>Carrier Global Corporation</li><li>Cato Networks</li><li>CERT.PL</li><li>CERT@VDE</li><li>Check Point Software Technologies Ltd.</li><li>Checkmarx</li><li>Checkmk GmbH</li><li>Ciena Corporation</li><li>cirosec GmbH</li><li>Cisco Systems, Inc.</li><li>ClickHouse, Inc.</li><li>Cloudflare, Inc.</li><li>Concrete CMS</li><li>CyberArk Labs</li><li>CyberDanube</li><li>Dassault Systèmes</li><li>Dfinity Foundation</li><li>DirectCyber</li><li>Docker Inc.</li><li>dotCMS LLC</li><li>Dragos, Inc.</li><li>Dutch Institute for Vulnerability Disclosure (DIVD)</li><li>Eaton</li><li>Eclipse Foundation</li><li>ELAN Microelectronics Corp.</li><li>Elastic</li><li>EnterpriseDB Corporation</li><li>Environmental Systems Research Institute, Inc. (Esri)</li><li>Ericsson</li><li>ESET, spol. s r.o.</li><li>EU Agency for Cybersecurity (ENISA)</li><li>Exodus Intelligence</li><li>F5 Networks</li><li>Fedora Project (Infrastructure Software)</li><li>Flexera Software LLC</li><li>Fluid Attacks</li><li>Forcepoint</li><li>Forescout Technologies</li><li>ForgeRock, Inc.</li><li>Fortinet, Inc.</li><li>Fortra, LLC</li><li>Gallagher Group Ltd</li><li>GE Healthcare</li><li>Genetec Inc.</li><li>Gitea Limited</li><li>GitHub (maintainer security advisories)</li><li>GitHub Inc, (Products Only)</li><li>GitLab Inc.</li><li>Glyph & Cog, LLC</li><li>Google LLC</li><li>Grafana Labs</li><li>Gridware Cybersecurity</li><li>Hanwha Vision Co., Ltd.</li><li>HashiCorp Inc.</li><li>HCL Software</li><li>HeroDevs</li><li>HiddenLayer, Inc.</li><li>Hillstone Networks Inc.</li><li>Hitachi Energy</li><li>Hitachi Vantara</li><li>Hitachi, Ltd.</li><li>Honeywell International Inc.</li><li>HP Inc.</li><li>Huawei Technologies</li><li>HYPR Corp</li><li>IBM Corporation</li><li>ICS-CERT</li><li>IDEMIA</li><li>Indian Computer Emergency Response Team (CERT-In)</li><li>Intel Corporation</li><li>Israel National Cyber Directorate</li><li>Ivanti</li><li>Jamf</li><li>JetBrains s.r.o.</li><li>JFROG</li><li>Johnson Controls</li><li>Kaspersky</li><li>KNIME AG</li><li>KrCERT/CC</li><li>Kubernetes</li><li>Lenovo Group Ltd.</li><li>Lexmark International Inc.</li><li>LG Electronics</li><li>Liferay, Inc.</li><li>Logitech</li><li>M-Files Corporation</li><li>ManageEngine</li><li>Mattermost, Inc</li><li>Mautic</li><li>Microchip Technology</li><li>Microsoft Corporation</li><li>Milestone Systems A/S</li><li>Mitsubishi Electric Corporation</li><li>MongoDB</li><li>Moxa Inc.</li><li>N-able</li><li>National Cyber Security Centre - Netherlands (NCSC-NL)</li><li>National Cyber Security Centre SK-CERT</li><li>National Instruments</li><li>NEC Corporation</li><li>Netflix, Inc.</li><li>Netskope</li><li>NLnet Labs</li><li>NortonLifeLock Inc</li><li>Nozomi Networks Inc.</li><li>Octopus Deploy</li><li>Okta</li><li>ONEKEY GmbH</li><li>Open Design Alliance</li><li>Open-Xchange</li><li>OpenAnolis</li><li>openEuler</li><li>OpenHarmony</li><li>OpenText (formerly Micro Focus)</li><li>OTRS AG</li><li>Palantir Technologies</li><li>Palo Alto Networks</li><li>Panasonic Holdings Corporation</li><li>Pandora FMS</li><li>PaperCut Software Pty Ltd</li><li>Patchstack OÜ</li><li>Payara</li><li>Pegasystems</li><li>Pentraze Cybersecurity</li><li>Perforce</li><li>PHP Group</li><li>Ping Identity Corporation</li><li>PlexTrac, Inc.</li><li>PostgreSQL</li><li>Progress Software Corporation</li><li>Proofpoint Inc.</li><li>Protect AI</li><li>Pure Storage, Inc.</li><li>Python Software Foundation</li><li>QNAP Systems, Inc.</li><li>Qualcomm, Inc.</li><li>Qualys, Inc.</li><li>rami.io GmbH</li><li>Rapid7, Inc.</li><li>Real-Time Innovations, Inc.</li><li>Red Hat, Inc.</li><li>Robert Bosch GmbH</li><li>Rockwell Automation</li><li>SailPoint Technologies</li><li>Samsung TV & Appliance</li><li>SAP SE</li><li>SBA Research gGmbH</li><li>Schneider Electric SE</li><li>Schweitzer Engineering Laboratories, Inc.</li><li>Secomea</li><li>Securin</li><li>Security Risk Advisors</li><li>ServiceNow</li><li>SHENZHEN CoolKit Technology CO., LTD.</li><li>SICK AG</li><li>Siemens</li><li>Silicon Labs</li><li>Snow Software</li><li>Snyk</li><li>SolarWinds</li><li>Sonatype Inc.</li><li>Sophos</li><li>Spanish National Cybersecurity Institute, S.A.</li><li>Splunk</li><li>STAR Labs SG Pte. Ltd.</li><li>Suse</li><li>Switzerland National Cyber Security Centre (NCSC)</li><li>Synaptics</li><li>Synology Inc.</li><li>Talos</li><li>TeamViewer Germany GmbH</li><li>Teltonika Networks</li><li>Temporal Technologies Inc.</li><li>Tenable Network Security, Inc.</li><li>Thales Group</li><li>The Document Foundation</li><li>The Missing Link Australia (TML)</li><li>The Tcpdump Group</li><li>The Wikimedia Foundation</li><li>TianoCore.org</li><li>Tigera</li><li>Toshiba Corporation</li><li>TR-CERT (Computer Emergency Response Team of the Republic of Turkey)</li><li>Trellix</li><li>Trend Micro, Inc.</li><li>TWCERT/CC</li><li>upKeeper Solutions</li><li>Vivo Mobile Communication Technology Co.,LTD.</li><li>VulDB</li><li>VulnCheck</li><li>VULSec Labs</li><li>WatchGuard Technologies, Inc.</li><li>Western Digital</li><li>Wiz, Inc.</li><li>Wordfence</li><li>Xerox Corporation</li><li>Xiaomi Technology Co Ltd</li><li>Yandex N.V.</li><li>Yokogawa Group</li><li>Yugabyte, Inc.</li><li>Zephyr Project</li><li>Zero Day Initiative</li><li>Zoom Video Communications, Inc.</li><li>Zscaler, Inc.</li><li>ZUSO Advanced Research Team (ZUSO ART)</li><li>Zyxel Corporation</li></ul>"
30+
}
31+
]
32+
},
333
{
434
"id": 454,
535
"displayOnHomepageOrder": 2,

src/views/About/Metrics.vue

Lines changed: 16 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -295,8 +295,8 @@
295295
</p>
296296
</div>
297297
<h3 class="title">CNA Enrichment Recognition List</h3>
298-
<p class="cve-help-text"><span class="has-text-weight-bold">Last Updated: </span><time>December 2, 2024</time><br/>
299-
<span class="has-text-weight-bold">Total CNAs: </span>224</p>
298+
<p class="cve-help-text"><span class="has-text-weight-bold">Last Updated: </span><time>December 16, 2024</time><br/>
299+
<span class="has-text-weight-bold">Total CNAs: </span>233</p>
300300
<div>
301301
<ul>
302302
<li>9front Systems</li>
@@ -308,9 +308,11 @@
308308
<li>Amazon</li>
309309
<li>AMI</li>
310310
<li>AppCheck Ltd.</li>
311+
<li>ARC Informatique</li>
311312
<li>Arista Networks, Inc.</li>
312313
<li>Asea Brown Boveri Ltd.</li>
313314
<li>ASR Microelectronics Co., Ltd.</li>
315+
<li>ASUSTeK Computer Incorporation</li>
314316
<li>Autodesk</li>
315317
<li>Automotive Security Research Group (ASRG)</li>
316318
<li>Avaya Inc.</li>
@@ -337,10 +339,9 @@
337339
<li>ClickHouse, Inc.</li>
338340
<li>Cloudflare, Inc.</li>
339341
<li>Concrete CMS</li>
342+
<li>CyberArk Labs</li>
340343
<li>CyberDanube</li>
341-
<li>Cybersecurity and Infrastructure Security Agency (CISA) U.S. Civilian Government</li>
342344
<li>Dassault Systèmes</li>
343-
<li>Dell EMC</li>
344345
<li>Dfinity Foundation</li>
345346
<li>DirectCyber</li>
346347
<li>Docker Inc.</li>
@@ -358,6 +359,7 @@
358359
<li>EU Agency for Cybersecurity (ENISA)</li>
359360
<li>Exodus Intelligence</li>
360361
<li>F5 Networks</li>
362+
<li>Fedora Project (Infrastructure Software)</li>
361363
<li>Flexera Software LLC</li>
362364
<li>Fluid Attacks</li>
363365
<li>Forcepoint</li>
@@ -375,8 +377,10 @@
375377
<li>Glyph & Cog, LLC</li>
376378
<li>Google LLC</li>
377379
<li>Grafana Labs</li>
380+
<li>Gridware Cybersecurity</li>
378381
<li>Hanwha Vision Co., Ltd.</li>
379382
<li>HashiCorp Inc.</li>
383+
<li>HCL Software</li>
380384
<li>HeroDevs</li>
381385
<li>HiddenLayer, Inc.</li>
382386
<li>Hillstone Networks Inc.</li>
@@ -387,11 +391,13 @@
387391
<li>HP Inc.</li>
388392
<li>Huawei Technologies</li>
389393
<li>HYPR Corp</li>
394+
<li>IBM Corporation</li>
390395
<li>ICS-CERT</li>
391396
<li>IDEMIA</li>
392397
<li>Indian Computer Emergency Response Team (CERT-In)</li>
393398
<li>Intel Corporation</li>
394399
<li>Israel National Cyber Directorate</li>
400+
<li>Ivanti</li>
395401
<li>Jamf</li>
396402
<li>JetBrains s.r.o.</li>
397403
<li>JFROG</li>
@@ -425,7 +431,6 @@
425431
<li>NLnet Labs</li>
426432
<li>NortonLifeLock Inc</li>
427433
<li>Nozomi Networks Inc.</li>
428-
<li>Nvidia Corporation</li>
429434
<li>Octopus Deploy</li>
430435
<li>Okta</li>
431436
<li>ONEKEY GmbH</li>
@@ -448,20 +453,25 @@
448453
<li>Perforce</li>
449454
<li>PHP Group</li>
450455
<li>Ping Identity Corporation</li>
456+
<li>PlexTrac, Inc.</li>
451457
<li>PostgreSQL</li>
452458
<li>Progress Software Corporation</li>
453459
<li>Proofpoint Inc.</li>
454460
<li>Protect AI</li>
455461
<li>Pure Storage, Inc.</li>
462+
<li>Python Software Foundation</li>
456463
<li>QNAP Systems, Inc.</li>
457464
<li>Qualcomm, Inc.</li>
458465
<li>Qualys, Inc.</li>
459466
<li>rami.io GmbH</li>
460467
<li>Rapid7, Inc.</li>
468+
<li>Real-Time Innovations, Inc.</li>
469+
<li>Red Hat, Inc.</li>
461470
<li>Robert Bosch GmbH</li>
462471
<li>Rockwell Automation</li>
463472
<li>SailPoint Technologies</li>
464473
<li>Samsung TV & Appliance</li>
474+
<li>SAP SE</li>
465475
<li>SBA Research gGmbH</li>
466476
<li>Schneider Electric SE</li>
467477
<li>Schweitzer Engineering Laboratories, Inc.</li>
@@ -472,11 +482,9 @@
472482
<li>SHENZHEN CoolKit Technology CO., LTD.</li>
473483
<li>SICK AG</li>
474484
<li>Siemens</li>
475-
<li>Sierra Wireless Inc.</li>
476485
<li>Silicon Labs</li>
477486
<li>Snow Software</li>
478487
<li>Snyk</li>
479-
<li>SoftIron</li>
480488
<li>SolarWinds</li>
481489
<li>Sonatype Inc.</li>
482490
<li>Sophos</li>
@@ -489,6 +497,7 @@
489497
<li>Synology Inc.</li>
490498
<li>Talos</li>
491499
<li>TeamViewer Germany GmbH</li>
500+
<li>Teltonika Networks</li>
492501
<li>Temporal Technologies Inc.</li>
493502
<li>Tenable Network Security, Inc.</li>
494503
<li>Thales Group</li>

0 commit comments

Comments
 (0)