|
|
Request a CVE IdentifierCVE Entry reservation allows researchers and vendors to include CVE Identifiers (also called CVE-IDs and CVEs) in the initial public announcement of a vulnerability, and ensures that the CVE Identifier is instantly available to all CVE users and makes it easier to track vulnerabilities over time. The methods by which researchers may request CVE Identifier number(s) are described below. Main MethodsContact one of the officially recognized CVE Numbering Authorities (CNAs), which will then include a CVE Identifier number in its initial public announcement about your new vulnerability. Or, contact an emergency response team such as CERT/CC, etc., post the information to mailing lists such as Bugtraq, or provide the information to a vulnerability analysis team. Alternative MethodIf you are unable to obtain a CVE Identifier via the main methods above, you may request a CVE Identifier directly from the CVE project. To reserve a CVE Identifier before publicizing a new vulnerability, vulnerability researchers may contact cve-assign@mitre.org and we will provide you with our "CVE ID Reservation Guidelines for Researchers" document. We will then work with you to assign a CVE Identifier for the issue while you work through the process of publicly disclosing the vulnerability. Please review the Researcher Responsibilities.
|
|||||||||||||||||
