Colleagues, The CVE Program is happy to announce two (2) new CNAs: Organization Name: 9front Systems Org Short Name: 9front Organization Location: USA Scope: All software produced as part of the Plan9front open source operating system, as well as its applications and cyberinfrastructure. Vulnerabilities discovered by or reported to 9front Systems for all Plan 9 software not covered by the scope of another CNA. Top-Level Root: MITRE Disclosure Policy location: http://bugs.9front.org/disclosure Advisory location: http://bugs.9front.org/ Public point of contact: b...@9front.org<mailto:b...@9front.org> CNA Type: Open Source Organization Name: Ivanti Org Short Name: ivanti Organization Location: USA Scope: Vulnerabilities in supported Ivanti products and infrastructure, excluding third-party components, and meeting severity thresholds defined in Ivanti’s Disclosure Policy found here https://www.ivanti.com/support/contact-security Top-Level Root: MITRE Disclosure Policy location: https://www.ivanti.com/support/contact-security Advisory location: https://www.ivanti.com/blog/topics/security-advisory Public point of contact: responsible.disclos...@ivanti.com<mailto:responsible.disclos...@ivanti.com> CNA Type: Vendor Total CNAs: 394 CNAs (392 CNAs and 2 CNA-LRs) Total Countries: 40 (+ 1 no country affiliation)
Respectfully, CVE Program Secretariat cve-prog-secretar...@mitre.org<mailto:cve-prog-secretar...@mitre.org> [A picture containing text, clipart Description automatically generated]