WhiteSource Authorized as a CVE Numbering Authority

News provided by

WhiteSource

01 Mar, 2021, 19:00 IST

TEL AVIV, Israel, March 1, 2021 /PRNewswire/ -- WhiteSource, the leader in open source security and license compliance management, has been approved by the MITRE Corporation to identify and publicly disclose CVEs as a CVE Numbering Authority.

The Common Vulnerabilities and Exposures glossary (CVE) is a security project focused on publicly released software, funded by the US Division of Homeland Security and maintained by the MITRE Corporation. The CVE glossary collects information about security vulnerabilities and exposures, cataloging them according to various identifiers and providing them with unique IDs for quick referencing.

Most CVE IDs that are given to new vulnerabilities are issued by MITRE, while other CVEs receive their ID from commercial numbering authorities (non-governmental) who will number vulnerabilities and exposures found in software projects. As of December 2018, pending a MITRE certification process, commercial entities have been authorized to act as CVE Numbering Authorities (CNA), including Linux, Google, Microsoft, Mozilla, Red Hat, and now WhiteSource.

"We're excited with this opportunity to take part in the security research and open source communities' efforts to address open source security," said Shiri Arad Ivtsan, Director of Product Management at WhiteSource. "Becoming a CNA allows WhiteSource to join the many global forces taking on the challenge of application security to ensure that open source vulnerabilities are efficiently detected and remediated." Arad Ivtsan added: "We are committed to creating advanced remediation tools that boost organizations' application security efforts."

To learn more or submit a new CVE, visit https://www.whitesourcesoftware.com/vulnerability-database

About WhiteSource

WhiteSource is the pioneer of open source security and license compliance management. Founded in 2011, its vision is to empower businesses to develop better software by harnessing the power of open source. WhiteSource is used by more than 800 customers worldwide, from all verticals and sizes, including 23% of Fortune 100 companies, as well as industry leaders such as Microsoft, IBM, Comcast, and many more. For more information, please visit www.whitesourcesoftware.com .

SOURCE WhiteSource

Related Links

https://www.whitesourcesoftware.com/