[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
article on NVD and CNNVD
- To: cve-editorial-board-list <cve-editorial-board-list@lists.mitre.org>
- Subject: article on NVD and CNNVD
- From: Kurt Seifried <kurt@seifried.org>
- Date: Thu, 19 Oct 2017 21:37:10 -0600
- Authentication-results: spf=none (sender IP is 129.83.29.2) smtp.mailfrom=LISTS.MITRE.ORG; mitre.mail.onmicrosoft.com; dkim=none (message not signed) header.d=none;mitre.mail.onmicrosoft.com; dmarc=none action=none header.from=seifried.org;
- Delivery-date: Fri Oct 20 06:43:51 2017
- List-help: <mailto:LISTSERV@LISTS.MITRE.ORG?body=INFO%20CVE-EDITORIAL-BOARD-LIST>
- List-owner: <mailto:CVE-EDITORIAL-BOARD-LIST-request@LISTS.MITRE.ORG>
- List-subscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-subscribe-request@LISTS.MITRE.ORG>
- List-unsubscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-unsubscribe-request@LISTS.MITRE.ORG>
- Sender: <owner-cve-editorial-board-list@lists.mitre.org>
- Spamdiagnosticmetadata: 5952c28dcc454f0789fb433d26f936ef
- Spamdiagnosticoutput: 1:2
https://www.theregister.co.uk/2017/10/20/us_china_vuln_reporting/
Sounds like CNNVD scrapes for CVE's not yet in cve.mitre.org whereas NVD doesn't?
Seems like speeding up submissions (especially via github) should help there.
I'm wondering regarding tooling what would integrate well with existing tooling/processes used by CNAs. E.g. at Red hat we rely use Bugzilla as a core piece of technology, what are other people using?
- Prev by Date: RE: CVE for services - already done? CVE-2017-10128
- Next by Date: Problematic assignments for subpar reports via CVE request form
- Previous by thread: RE: CVE for services - already done? CVE-2017-10128
- Next by thread: Problematic assignments for subpar reports via CVE request form
- Index(es):
