Software company JFrog has become the latest organization to be designated by the CVE Program as a CVE Numbering Authority.
Currently, there are 189 organizations from 31 countries participating as CNAs, with more than 100 based in the US.
The classification will allow the company to assign CVE identification numbers to newly discovered security vulnerabilities and publish related details in associated CVE Records for public consumption.
JFrog will now be authorized to work with the cybersecurity community on a variety of security issues and provide customers with differentiated remediation data through its JFrog Xray
Moran Ashkenazi, CISO and VP of Security Engineering at JFrog, said becoming a CNA will not only allow them to help security researchers verify and triage their vulnerabilities but also help keep companies’ binaries more secure by collaborating on potential threats with the wider security community.
“The number of security risks in software and connected devices continues to grow. As a CNA we’re empowered to
Read the article