“CNA Enrichment Recognition” - 258 CNAs on the list for April 6, 2026
Published monthly, this list recognizes those CVE Numbering Authorities (#CNAs) actively providing #CVSS and #CWE vulnerability data in their #CVE Records
medium.com/@cve_program...
The CVE Program and FIRST will co-host “VulnCon 2026” at the DoubleTree Resort by Hilton Hotel Paradise Valley - Scottsdale, in Scottsdale, Arizona, USA, on April 13–16, 2026. Registration, both virtual and in-person, is open on the FIRST website until today, April 6, 2026, at 19:00 UTC.
FINAL HOURS TO REGISTER—
Registration for “VulnCon 2026” closes on April 6, 2026, at 19:00 UTC
* Virtual: $100.00 (USD)
* In-Person: $600.00 (USD)
Register now!
first.org/conference/v...
#cve #first #vulncon26 #vulnerability
Minutes from the CVE Board teleconference meeting on March 4 are now available
mail-archive.com/cve-editoria...
#cve #vulnerability #vulnerabilitymanagement #hssedi #cisa #infosec #cybersecurity
The CVE Program and FIRST will co-host “VulnCon 2026” at the DoubleTree Resort by Hilton Hotel Paradise Valley - Scottsdale, in Scottsdale, Arizona, USA, on April 13–16, 2026. Registration, both virtual and in-person, is open on the FIRST website until April 6, 2026, at 19:00 UTC.
LAST CHANCE TO REGISTER—
Registration for “VulnCon 2026” closes on April 6, 2026, at 19:00 UTC
* Virtual: $100.00 (USD)
* In-Person: $600.00 (USD)
Register today!
first.org/conference/v...
#cve #first #vulncon26 #vulnerability
The CVE Program and FIRST will co-host “VulnCon 2026” at the DoubleTree Resort by Hilton Hotel Paradise Valley - Scottsdale, in Scottsdale, Arizona, USA, on April 13–16, 2026. Registration, both virtual and in-person, is open on the FIRST website until April 6, 2026, at 19:00 UTC.
REMINDER—
Registration for “VulnCon 2026” closes on April 6, 2026, at 19:00 UTC
* Virtual: $100.00 (USD)
* In-Person: $600.00 (USD)
Register today!
first.org/conference/v...
#cve #first #vulncon26 #vulnerability
500+ Organizations Now Participating as CVE Numbering Authorities (CNAs)!
500+ Organizations Now Participating as CVE Numbering Authorities (CNAs)!
As of March 31, 2026, there are 502 CNAs (499 CNAs and 3 CNA-LRs) from 42 countries participating in the CVE Program
Learn more:
www.cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement
New CVE Program Partner
Canva is now a CVE Numbering Authority (CNA) assigning CVE IDs for all Canva products, open-source software published & maintained by Canva, & 3rd-party vulnerabilities it discovers not in another CNA’s scope
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement
New CVE Program Partner
Acer is now a CVE Numbering Authority (CNA) assigning CVE IDs for Acer issues only
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement #informationsecurity #infosec #cybersecurity
Fujifilm Business Innovation is now a CVE Numbering Authority (CNA) assigning CVE IDs for Fuji Xerox & Fujifilm Business Innovation products
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement #cybersecurity
New CVE Program Partner
The HDF Group is now a CVE Numbering Authority (CNA) assigning CVE IDs for all HDF software including HDF5, HDF4, HSDS, HDFView
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement
#opensource
The CVE Program and FIRST will co-host “VulnCon 2026” at the DoubleTree Resort by Hilton Hotel Paradise Valley - Scottsdale, in Scottsdale, Arizona, USA, on April 13–16, 2026. Registration, both virtual and in-person, is open on the FIRST website until April 6, 2026, at 19:00 UTC.
Register now for “VulnCon 2026” on April 13–16, 2026!
* In-Person: $600.00 (USD)
* Virtual: $100.00 (USD)
Registration closes on April 6, 2026, at 19:00 UTC.
first.org/conference/v...
#cve #first #vulncon26 #vulnerability
We Speak CVE Podcast, Episode 30, “CVE Record Disputes Explained”
We Speak CVE Podcast episode 30 now available!
“CVE Record Disputes Explained”
youtu.be/8pZrGj5QCLU
#cve #vulnerability #vulnerabilitymanagement #vulnerabilityintelligence #cybersecurity
CVE Blog
New on the CVE Blog:
“Supplier ADP Pilot” — CVE Program to Explore Benefits of Supporting VEX-like, Product Status Information in Upstream CVE Records
medium.com/@cve_program...
#cve #vulnerability #vulnerabilitymanagement #infosec #cybersecurity
New CVE Program Partner
Cribl is now a CVE Numbering Authority (CNA) assigning CVE IDs for vulnerabilities identified in Cribl products
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement #informationsecuroty #infosec #cybersecurity
New CVE Program Partner
Bombadil Systems is now a CVE Numbering Authority (CNA) assigning CVE IDs for vulnerabilities in third-party software discovered by Bombadil Systems that are not in another CNA’s scope
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement
Minutes from the CVE Board teleconference meeting on February 4 are now available
mail-archive.com/cve-editoria...
#cve #vulnerability #vulnerabilitymanagement #hssedi #cisa #infosec #cybersecurity
FULL AGENDA for “VulnCon 2026” now available on the conference website: www.first.org/conference/v...
Register today!
#cve #first #vulncon26 #vulnerability #cybersecurity #infosec
Increasing the Value of the CVE Record - CNA Enrichment Recognition List
“CNA Enrichment Recognition” - 259 CNAs on the list for March 2, 2026
Published monthly, this list recognizes those CVE Numbering Authorities (#CNAs) actively providing #CVSS and #CWE vulnerability data in their #CVE Records
medium.com/@cve_program...
CVE Blog
New on the CVE Blog:
“CVE Program Report for Quarter 4 Calendar Year (Q4 CY) 2025”
medium.com/@cve_program...
#cve #vulnerability #vulnerabilitymanagement #hssedi #cisa #infosec #cybersecurity
New CVE Program Partner
Turan Security is now a CVE Numbering Authority (CNA) assigning CVE IDs for vulnerabilities it discovers through independent research on products & projects not in another CNA’s scope
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement #infosec #cybersecurity
New CVE Program Partner
Cygence is now a CVE Numbering Authority (CNA) assigning CVE IDs for issues in 3rd-party products identified by, or reported, to Cygence, unless covered by another CNA’s scope
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement #cybersecurity
The CVE Program and FIRST will co-host “VulnCon 2026” at the DoubleTree Resort by Hilton Hotel Paradise Valley - Scottsdale, in Scottsdale, Arizona, USA, on April 13–16, 2026. Registration, both virtual and in-person, is open on the FIRST website.
Register today for “VulnCon 2026” on April 13–16, 2026!
In-Person:
* $525.00 (before 3/14/2026)
* $600.00 (after 3/14/2026)
Virtual:
* $100.00 (before 3/14/2026)
* $100.00 (after 3/14/2026)
first.org/conference/v...
#cve #first #vulncon26 #vulnerability
NOTICE:
CVE List Maintenance is concluded as of Thursday, February 26, 2026
* Action: quality control review/modification of 1999-2007 CVE Records to address potential inconsistencies identified during the first day
Additional information here: cve.org/Media/News/i...
NOTICE:
CVE List Maintenance
Thursday, February 26, 2026
9:30 AM – 4:30 PM EST
* Quality Control Review/Modification of CVE Records from 1999-2007
There will be no impact on viewing or publishing records during this time
Learn more: cve.org/Media/News/i...
NOTICE:
CVE List Maintenance is concluded for Wednesday, February 25, 2026
* Date/time fields of CVE Records published from 2022 (Part 2)–2026 were normalized
View the full schedule here: cve.org/Media/News/i...
The CVE Program and FIRST will co-host “VulnCon 2026” at the DoubleTree Resort by Hilton Hotel Paradise Valley - Scottsdale, in Scottsdale, Arizona, USA, on April 13–16, 2026. Registration, both virtual and in-person, is open on the FIRST website.
Registration—both in-person & virtual—are open for “CVE/FIRST VulnCon 2026” on April 13–16, 2026!!!
Register today:
first.org/conference/v...
#cve #first #vulncon26 #vulnerabilitymanagement #vulnerability
Monday, February 16 – CVE Records published from 1999–2007 Tuesday, February 17 – CVE Records published from 2008–2012 Wednesday, February 18 – CVE Records published from 2013–2015 Thursday, February 19 – CVE Records published from 2016–2017 Friday, February 20 – CVE Records published from 2018–2019 (Part 1) Monday, February 23 – CVE Records published from 2019 (Part 2)–2020 Tuesday, February 24 – CVE Records published from 2021–2022 (Part 1) Wednesday, February 25 – CVE Records published from 2022 (Part 2)–2026 Thursday, February 26 – Quality Control Review/Modification 1999-2007* * An additional day of processing has been added to address potential inconsistencies identified during the first day (i.e., February 16, 2026) of the maintenance activity.
NOTICE:
CVE List Maintenance
Wednesday, February 25, 2026
9:30 AM – 4:30 PM EST
* Date/time fields of CVE Records published from 2022 (Part 2)–2026 will be normalized
No impact on viewing or publishing records during this time
Learn more: cve.org/Media/News/i...
NOTICE:
CVE List Maintenance is concluded for Tuesday, February 24, 2026
* Date/time fields of CVE Records published from 2021–2022 (Part 1) were normalized
View the full schedule here: cve.org/Media/News/i...
New CVE Program Partner
JupiterOne is now a CVE Numbering Authority (CNA) assigning CVE IDs for all JupiterOne open source and commercial products
cve.org/Media/News/i...
#cve #cna #vulnerability #vulnerabilitymanagement #infosec #cybersecurity
Monday, February 16 – CVE Records published from 1999–2007 Tuesday, February 17 – CVE Records published from 2008–2012 Wednesday, February 18 – CVE Records published from 2013–2015 Thursday, February 19 – CVE Records published from 2016–2017 Friday, February 20 – CVE Records published from 2018–2019 (Part 1) Monday, February 23 – CVE Records published from 2019 (Part 2)–2020 Tuesday, February 24 – CVE Records published from 2021–2022 (Part 1) Wednesday, February 25 – CVE Records published from 2022 (Part 2)–2026 Thursday, February 26 – Quality Control Review/Modification 1999-2007* * An additional day of processing has been added to address potential inconsistencies identified during the first day (i.e., February 16, 2026) of the maintenance activity.
NOTICE:
CVE List Maintenance
Tuesday, February 24, 2026
9:30 AM – 4:30 PM EST
* Date/time fields of CVE Records published from 2021–2022 (Part 1) will be normalized
No impact on viewing or publishing records during this time
Learn more: cve.org/Media/News/i...