From d347812751e657ea30a180cd79786eec303f589d Mon Sep 17 00:00:00 2001 From: rroberge Date: Tue, 9 Dec 2025 00:05:44 +0000 Subject: [PATCH 1/2] #3790 Add 1 new CNA --- src/assets/data/CNAsList.json | 59 +++++++++++++++++++++++++++++++++++ src/assets/data/metrics.json | 2 +- src/assets/data/news.json | 22 +++++++++++++ 3 files changed, 82 insertions(+), 1 deletion(-) diff --git a/src/assets/data/CNAsList.json b/src/assets/data/CNAsList.json index c5e817e6..09603b14 100644 --- a/src/assets/data/CNAsList.json +++ b/src/assets/data/CNAsList.json @@ -27793,5 +27793,64 @@ ] }, "country": "USA" + }, + { + "shortName": "runZero", + "cnaID": "CNA-2025-0062", + "organizationName": "runZero, Inc.", + "scope": "Vulnerabilities in runZero products, as well as vulnerabilities discovered by or reported to runZero that are not in another CNA’s scope.", + "contact": [ + { + "email": [ + { + "label": "Email", + "emailAddr": "todb@runzero.com" + } + ], + "contact": [], + "form": [] + } + ], + "disclosurePolicy": [ + { + "label": "Policy", + "language": "", + "url": "https://www.runzero.com/legal/disclosure/" + } + ], + "securityAdvisories": { + "alerts": [], + "advisories": [ + { + "label": "Advisories", + "url": "https://www.runzero.com/advisories" + } + ] + }, + "resources": [], + "CNA": { + "isRoot": false, + "root": { + "shortName": "n/a", + "organizationName": "n/a" + }, + "roles": [ + { + "helpText": "", + "role": "CNA" + } + ], + "TLR": { + "shortName": "mitre", + "organizationName": "MITRE Corporation" + }, + "type": [ + "Vendor", + "Researcher", + "Hosted Service", + "Open Source" + ] + }, + "country": "USA" } ] \ No newline at end of file diff --git a/src/assets/data/metrics.json b/src/assets/data/metrics.json index 030c6520..de1feaac 100644 --- a/src/assets/data/metrics.json +++ b/src/assets/data/metrics.json @@ -1216,7 +1216,7 @@ }, { "month": "December", - "value": "TBA" + "value": "1" } ] }, diff --git a/src/assets/data/news.json b/src/assets/data/news.json index 10ce72f3..ab8ff122 100644 --- a/src/assets/data/news.json +++ b/src/assets/data/news.json @@ -1,5 +1,26 @@ { "currentNews": [ + { + "id": 608, + "newsType": "news", + "title": "runZero, Inc. Added as CVE Numbering Authority (CNA)", + "urlKeywords": "runZero Added as CNA", + "date": "2025-12-09", + "description": [ + { + "contentnewsType": "paragraph", + "content": "runZero, Inc. is now a CVE Numbering Authority (CNA) for vulnerabilities in runZero products, as well as vulnerabilities discovered by or reported to runZero that are not in another CNA’s scope." + }, + { + "contentnewsType": "paragraph", + "content": "To date, 484 CNAs (481 CNAs and 3 CNA-LRs) from 40 countries and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign CVE Identifiers (CVE IDs) and publish CVE Records for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. runZero is the 263rd CNA from USA." + }, + { + "contentnewsType": "paragraph", + "content": "runZero’s Root is the CISA ICS Root." + } + ] + }, { "id": 607, "newsType": "blog", @@ -42,6 +63,7 @@ }, { "id": 606, + "displayOnHomepageOrder": 1, "newsType": "blog", "title": "REMINDER: Call for Speakers for VulnCon 2026 Closes on December 22, 2025", "urlKeywords": "VulnCon 2026 Call Speakers Closes December 22", From 40692f5860ca3f83d809f402f0e053db20c8ce38 Mon Sep 17 00:00:00 2001 From: rroberge Date: Tue, 9 Dec 2025 18:07:43 +0000 Subject: [PATCH 2/2] #3790 Updated --- src/assets/data/CNAsList.json | 2 +- src/assets/data/news.json | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/src/assets/data/CNAsList.json b/src/assets/data/CNAsList.json index 09603b14..528e6b04 100644 --- a/src/assets/data/CNAsList.json +++ b/src/assets/data/CNAsList.json @@ -27798,7 +27798,7 @@ "shortName": "runZero", "cnaID": "CNA-2025-0062", "organizationName": "runZero, Inc.", - "scope": "Vulnerabilities in runZero products, as well as vulnerabilities discovered by or reported to runZero that are not in another CNA’s scope.", + "scope": "Vulnerabilities in runZero products, as well as vulnerabilities discovered by, or reported to, runZero that are not in another CNA’s scope.", "contact": [ { "email": [ diff --git a/src/assets/data/news.json b/src/assets/data/news.json index ab8ff122..2315c349 100644 --- a/src/assets/data/news.json +++ b/src/assets/data/news.json @@ -9,7 +9,7 @@ "description": [ { "contentnewsType": "paragraph", - "content": "runZero, Inc. is now a CVE Numbering Authority (CNA) for vulnerabilities in runZero products, as well as vulnerabilities discovered by or reported to runZero that are not in another CNA’s scope." + "content": "runZero, Inc. is now a CVE Numbering Authority (CNA) for vulnerabilities in runZero products, as well as vulnerabilities discovered by, or reported to, runZero that are not in another CNA’s scope." }, { "contentnewsType": "paragraph",