[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: CVE Entry Quality Working Group
- To: Chris Coffin <ccoffin@mitre.org>
- Subject: Re: CVE Entry Quality Working Group
- From: James Williams <ken.williams@broadcom.com>
- Date: Mon, 26 Nov 2018 10:33:41 -0600
- Authentication-results: spf=softfail (sender IP is 198.49.146.235) smtp.mailfrom=broadcom.com; imc.mitre.org; dkim=pass (signature was verified) header.d=broadcom.com;imc.mitre.org; dmarc=pass action=none header.from=broadcom.com;
- Cc: cve-editorial-board-list@mitre.org
- Delivery-date: Mon Nov 26 16:32:05 2018
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=broadcom.com; s=google; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc:content-transfer-encoding; bh=vtS8PI+hJ8+98Exkp7gJm6c1XQshwIsJeub1pwc1r4E=; b=aAP2TnweYXIcrTCs0E2zIdJWSncb4CTdM1YClF76AY7Dp/tsakt6uBCJdkneTGgDr8 f+6rNmB/TLwkUiduNnjsYBVr4sgiv89OKQm4RDHc9qRX58fDn5T2y1/AEuL5QHZjnTA6 ymjrUNTSiuWDSvjbpUOtJ7lTqFJswWFJmAsQA=
- In-reply-to: <BN7PR09MB280317250ACC15083F88CBB6A1D70@BN7PR09MB2803.namprd09.prod.outlook.com>
- References: <BN7PR09MB280317250ACC15083F88CBB6A1D70@BN7PR09MB2803.namprd09.prod.outlook.com>
- Spamdiagnosticmetadata: NSPM
- Spamdiagnosticoutput: 1:99
On Mon, Nov 26, 2018 at 8:32 AM Coffin, Chris <ccoffin@mitre.org> wrote: > > Board Members, > > > > The CVE team would like to judge your level of interest in > establishing a CVE Entry Quality Working Group. The main focus of the > group would be on improving the quality of CVE entry content. The > output of the group would be best practices and guidelines on how to > generate a CVE entry, and possibly propose changes to the CNA Rules. > > > > Example issues the group could cover include: > > Should the CVSS vector be allowed in a CVE Entry description? > What is the best way to describe relationships between products (e.g. > Product A bundles Product B)? > If the only public data for two different vulnerabilities would > result in an identical description, what should be done? > > > > Would the Board be interested in establishing the CVE Entry Quality > Working Group, and are any Board members interested in stepping up to > be the chair? Please respond by Friday Nov 30. > > > > The CVE Team Great idea, and I'd like to participate in this. -- Regards, Ken Williams Vulnerability Response Director, Product Vulnerability Response Team CA Technologies, A Broadcom Company, 520 Madison Av, 22nd Floor, NY NY 10022 Office: +1 631 533 7151 | Mobile: +1 816 914 4225 | Ken.Williams@broadcom.com
- References:
- CVE Entry Quality Working Group
- From: "Coffin, Chris" <ccoffin@mitre.org>
- CVE Entry Quality Working Group
- Prev by Date: Re: CVE Entry Quality Working Group
- Next by Date: RE: CVE Quality Working Group (CQWG)
- Previous by thread: Re: CVE Entry Quality Working Group
- Next by thread: Re: CVE Entry Quality Working Group
- Index(es):
