Colleagues, The CVE Program is happy to announce two (2) new CNAs:
Organization Name: DirectCyber Org Short Name: directcyber Organization Location: Australia Scope: Products in Australia (either the reporter or the target vendor must operate in AU), which are not covered by another CNA. Top-Level Root: MITRE Disclosure Policy location: https://directcyber.com.au/report.html Advisory location: https://directcyber.com.au/advisory.html Public point of contact: rep...@directcyber.com.au<mailto:rep...@directcyber.com.au> CNA Type: Researcher, Open Source Organization Name: Sec1 Org Short Name: sec1 Organization Location: India Scope: Vulnerabilities found in cybersecurity software solutions developed and maintained by Sec1 as listed on https://sec1.io/, and vulnerabilities identified in software projects or products where Sec1 has a direct and substantial contribution or partnership, unless covered by the scope of another CNA. Top-Level Root: MITRE Disclosure Policy location: https://sec1.io/sec1-public-disclosure-policy-for-cve-reporting/ Advisory location: https://sec1.io/sec1-security-advisories/ Public point of contact: secur...@sec1.io<mailto:secur...@sec1.io> CNA Type: Vendor Total CNAs: 364 CNAs (362 CNAs and 2 CNA-LRs) Total Countries: 40 (+ 1 no country affiliation) Respectfully, CVE Program Secretariat cve-prog-secretar...@mitre.org<mailto:cve-prog-secretar...@mitre.org> [A picture containing text, clipart Description automatically generated]