CVE | CWE

Root Cause Mapping Working Group (RCM WG) members — Reminder that our next meeting is today, Wednesday, 1/29/2025, at 01:00 - 02:00 PM EST    Topics:  - RCM LLM update  - Potential use cases for a CWE AI chat bot     RCM WG info: https://lnkd.in/eJMS2snE

News for CNAs—    “Quick Start Guide for CPE Applicability Statements in the CVE Record Format” is now available    The guide includes:  * How to include #CPE applicability statements within #CVE Records  * Basic & advanced examples  * FAQs    https://lnkd.in/d_8MTR2p

#CWE User Experience Working Group (UEWG) members — Reminder that our next meeting is Wednesday, 1/29/2025, at 12:00-1:00PM EST    Topics:  - CWE Macro Usability Updates  - CWE Views Questions & Guidance  - Open Discussion    About the CWE UEWG: https://bit.ly/3CIylfz

Do you want to be a part of the 40+ action-packed sessions at VulnCon25? If you said yes, now is your chance to submit your paper today! CFP has been extended until Jan 31st. 😎 #vulnerabilitymanagement #CVE #CVSS #EPSS #CISA #MITRE #VEX #Raleigh 🔗 https://go.first.org/MPudV

Is your company in #vulnerabilitymanagement? Consider sponsoring the #Vuln Conference! VulnCon2025 returns to Raleigh, NC April 7-10, 2025. Sponsorship opportunities are going fast, reach out today. https://go.first.org/I0w9k #CVE

If you’re serious about vulnerability management, CVE/FIRST VulnCon 2025 is where you need to be! Last year’s inaugural VulnCon was truly something special — the first conference I’ve attended that was laser-focused on vulnerability management, from start to finish. Every attendee, every presentation, every panel was dedicated to exploring and advancing the state of practice — whether through insightful panel discussions, new research, or critical insights on cybersecurity information standards. This concentrated focus is what made VulnCon stand out. It wasn’t just another cybersecurity conference — it was a gathering of the key contributors, programs, and players working to improve vulnerability discovery, coordination, disclosure, and remediation in a meaningful way. That’s why I’m excited for VulnCon 2025 — and you should be too! 🔹 Call for Speakers is Open! If you have expertise, research, or experiences that can help push the field forward, submit a talk and be part of the conversation. 🔹 Learn from the Best! Stay ahead with insights on best practices, cutting-edge research, and emerging information standards shaping the future of vulnerability management. 🔹 Expand Your Network! Whether you’re a seasoned expert or just getting started, this is your opportunity to engage with the community that’s actively improving how we manage vulnerabilities. Follow [https://lnkd.in/e6R3Xksx] for event details and CFP info! #VulnCon2025 #VulnerabilityManagement #CyberSecurity #CVE #CWE #InformationSecurity

New Call for Papers Deadline for “VulnCon 2025” — January 31, 2025    #CVE Program and #FIRST will co-host #VulnCon2025 in Raleigh, North Carolina, USA, on April 7–10, 2025. Registration, both virtual & in-person, is open on the FIRST website    https://lnkd.in/e--BVia4

“CNA Enrichment Recognition” - 236 CNAs on the list for January 13, 2025     Published every 2 weeks, this list recognizes those CVE Numbering Authorities (#CNAs) actively providing #CVSS and #CWE vulnerability data in their #CVE Records    https://lnkd.in/e-dX5SmW

Check out this Help Net Security interview with #CWE Program Lead Alec Summers @ the “2024 CWE Top 25 Most Dangerous Software Weaknesses” list trends, role of the #CVE CNA, use of #AI tools, & other insights  https://lnkd.in/d8xV7nGS

Submit your #CFP for #VulnCon2025 today to be a part of the 40+ action-packed sessions😎🔗 https://go.first.org/MPudV #vulnerabilitymanagement #CVE #CVSS #EPSS #CISA #MITRE #VEX #Raleigh