Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

cve coordination on 11 vulnerabilites. #389

Open
INCIBE-CNA opened this issue Nov 8, 2023 · 1 comment
Open

cve coordination on 11 vulnerabilites. #389

INCIBE-CNA opened this issue Nov 8, 2023 · 1 comment

Comments

@INCIBE-CNA
Copy link

Dear sentrifugo team,

We are writing to you from INCIBE (https://www.incibe.es), the National Institute of Cybersecurity of Spain, about multiple vulnerabilities reported by an external researcher in one of your products.

We participate in the CVE Program as a CNA Root (https://www.cve.org/ProgramOrganization/Structure) , which enables us to assign and publish CVE codes.

Note that this report is not about an incident, nobody is exploiting the vulnerabilities. Simply, from INCIBE we take care of managing the CVE report, documentation and publication, in coordination with the affected parties.

As established in our disclosure policy (https://www.incibe.es/en/incibe-cert/early-warning/vulnerabilities/cve-assignment-publication), we are going to make this vulnerabilities public by the first week of January.

Is it possible to obtain some point of contact to send the vulenrability drafts ?.

Thank you very much and kind regards,
@INCIBE-CNA
Copy link
Author

Please find attache the vulenrability details.

03_documentacion.zip

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@INCIBE-CNA