Re: ** Three New CNAs – Honeywell, Honor, and Zowe **

2022-11-10 Thread Kent Landfield
Super, thanks.

—
Kent Landfield
+1.817.637.8026
kent_landfi...@mcafee.com

From: Chris Levendis 
Sent: Thursday, November 10, 2022 9:04:24 AM
To: Kent Landfield ; CVE Program Secretariat 
; CVE Editorial Board Discussion 

Subject: RE: ** Three New CNAs – Honeywell, Honor, and Zowe **


CAUTION: External email. Do not click links or open attachments unless you 
recognize the sender and know the content is safe.



We’re working on this Kent.



C



Chris Levendis

The MITRE Corporation

(C) 703-298-8593

cleven...@mitre.org<mailto:cleven...@mitre.org>



From: Kent Landfield 
Sent: Tuesday, November 8, 2022 3:47 PM
To: CVE Program Secretariat ; CVE Editorial 
Board Discussion 
Subject: Re: ** Three New CNAs – Honeywell, Honor, and Zowe **



Glad to see this.



I have a request. Could we identify open-source projects as something other 
than “Vendors and Projects” ?  I’d rather see them listed as an Open-Source 
Project.



Thank you, Gracias, Grazie, Mahalo, Merci, Σας ευχαριστώ, Bedankt, Danke, 
ありがとう, धन्यवाद!

--

Kent Landfield

Trellix

+1.817.637.8026

kent.landfi...@trellix.com<mailto:kent.landfi...@trellix.com>



From: CVE Program Secretariat 
mailto:cve-prog-secretar...@mitre.org>>
Date: Tuesday, November 8, 2022 at 2:20 PM
To: CVE Editorial Board Discussion 
mailto:cve-editorial-board-list@mitre.org>>
Subject: ** Three New CNAs – Honeywell, Honor, and Zowe **



CAUTION: External email. Do not click links or open attachments unless you 
recognize the sender and know the content is safe.





Colleagues,

The CVE Program is happy to announce three (3) new CNAs:

Organization Name: Honeywell International Inc.
Org Short Name: Honeywell
Organization Location: USA
Scope: All Honeywell products.

Top-Level Root: CISA ICS
Disclosure Policy location: https://www.honeywell.com/us/en/product-security
Advisory locations: 
https://sps.honeywell.com/us/en/support/productivity/cyber-security-notifications,
 
https://buildings.honeywell.com/us/en/brands/our-brands/security/support-and-resources/product-resources/eol-and-security-notices
Public point of contact: ps...@honeywell.com<mailto:ps...@honeywell.com>
CNA Type: Vendors and Projects

Organization Name: Honor Device Co., Ltd.
Org Short Name: Honor
Organization Location: China
Scope: Vulnerabilities in Honor products and services unless covered by the 
scope of another CNA.
Top-Level Root: MITRE
Disclosure Policy location: https://www.hihonor.com/global/security/
Advisory location: https://www.hihonor.com/global/security/
Public point of contact:  secur...@hihonor.com<mailto:secur...@hihonor.com>
CNA Type: Vendors and Projects

Organization Name: Zowe
Org Short Name: Zowe
Organization Location: USA
Scope: Vulnerabilities in Zowe.org open-source projects.
Top-Level Root: MITRE
Disclosure Policy location: https://zowe.org/security.html
Advisory location: https://github.com/zowe/community/security/advisories
Public point of contact: 
zowe-secur...@lists.openmainframeproject.org<mailto:zowe-secur...@lists.openmainframeproject.org>
CNA Type: Vendors and Projects

Total Partners: 254
Total Countries: 35


Respectfully,
CVE Program Secretariat
cve-prog-secretar...@mitre.org<mailto:cve-prog-secretar...@mitre.org>

[A picture containing text, clipart  Description automatically generated]


RE: ** Three New CNAs – Honeywell, Honor, and Zowe **

2022-11-10 Thread Chris Levendis
We’re working on this Kent.

C

Chris Levendis
The MITRE Corporation
(C) 703-298-8593
cleven...@mitre.org<mailto:cleven...@mitre.org>

From: Kent Landfield 
Sent: Tuesday, November 8, 2022 3:47 PM
To: CVE Program Secretariat ; CVE Editorial 
Board Discussion 
Subject: Re: ** Three New CNAs – Honeywell, Honor, and Zowe **

Glad to see this.

I have a request. Could we identify open-source projects as something other 
than “Vendors and Projects” ?  I’d rather see them listed as an Open-Source 
Project.

Thank you, Gracias, Grazie, Mahalo, Merci, Σας ευχαριστώ, Bedankt, Danke, 
ありがとう, धन्यवाद!
--
Kent Landfield
Trellix
+1.817.637.8026
kent.landfi...@trellix.com<mailto:kent.landfi...@trellix.com>

From: CVE Program Secretariat 
mailto:cve-prog-secretar...@mitre.org>>
Date: Tuesday, November 8, 2022 at 2:20 PM
To: CVE Editorial Board Discussion 
mailto:cve-editorial-board-list@mitre.org>>
Subject: ** Three New CNAs – Honeywell, Honor, and Zowe **


CAUTION: External email. Do not click links or open attachments unless you 
recognize the sender and know the content is safe.


Colleagues,

The CVE Program is happy to announce three (3) new CNAs:

Organization Name: Honeywell International Inc.
Org Short Name: Honeywell
Organization Location: USA
Scope: All Honeywell products.
Top-Level Root: CISA ICS
Disclosure Policy location: https://www.honeywell.com/us/en/product-security
Advisory locations: 
https://sps.honeywell.com/us/en/support/productivity/cyber-security-notifications,
 
https://buildings.honeywell.com/us/en/brands/our-brands/security/support-and-resources/product-resources/eol-and-security-notices
Public point of contact: ps...@honeywell.com<mailto:ps...@honeywell.com>
CNA Type: Vendors and Projects

Organization Name: Honor Device Co., Ltd.
Org Short Name: Honor
Organization Location: China
Scope: Vulnerabilities in Honor products and services unless covered by the 
scope of another CNA.
Top-Level Root: MITRE
Disclosure Policy location: https://www.hihonor.com/global/security/
Advisory location: https://www.hihonor.com/global/security/
Public point of contact:  secur...@hihonor.com<mailto:secur...@hihonor.com>
CNA Type: Vendors and Projects
Organization Name: Zowe
Org Short Name: Zowe
Organization Location: USA
Scope: Vulnerabilities in Zowe.org open-source projects.
Top-Level Root: MITRE
Disclosure Policy location: https://zowe.org/security.html
Advisory location: https://github.com/zowe/community/security/advisories
Public point of contact: 
zowe-secur...@lists.openmainframeproject.org<mailto:zowe-secur...@lists.openmainframeproject.org>
CNA Type: Vendors and Projects

Total Partners: 254
Total Countries: 35


Respectfully,
CVE Program Secretariat
cve-prog-secretar...@mitre.org<mailto:cve-prog-secretar...@mitre.org>

[A picture containing text, clipart  Description automatically generated]


Re: ** Three New CNAs – Honeywell, Honor, and Zowe **

2022-11-08 Thread Kent Landfield
Glad to see this.

I have a request. Could we identify open-source projects as something other 
than “Vendors and Projects” ?  I’d rather see them listed as an Open-Source 
Project.

Thank you, Gracias, Grazie, Mahalo, Merci, Σας ευχαριστώ, Bedankt, Danke, 
ありがとう, धन्यवाद!
--
Kent Landfield
Trellix
+1.817.637.8026
kent.landfi...@trellix.com

From: CVE Program Secretariat 
Date: Tuesday, November 8, 2022 at 2:20 PM
To: CVE Editorial Board Discussion 
Subject: ** Three New CNAs – Honeywell, Honor, and Zowe **


CAUTION: External email. Do not click links or open attachments unless you 
recognize the sender and know the content is safe.


Colleagues,

The CVE Program is happy to announce three (3) new CNAs:

Organization Name: Honeywell International Inc.
Org Short Name: Honeywell
Organization Location: USA
Scope: All Honeywell products.
Top-Level Root: CISA ICS
Disclosure Policy location: https://www.honeywell.com/us/en/product-security
Advisory locations: 
https://sps.honeywell.com/us/en/support/productivity/cyber-security-notifications,
 
https://buildings.honeywell.com/us/en/brands/our-brands/security/support-and-resources/product-resources/eol-and-security-notices
Public point of contact: ps...@honeywell.com
CNA Type: Vendors and Projects

Organization Name: Honor Device Co., Ltd.
Org Short Name: Honor
Organization Location: China
Scope: Vulnerabilities in Honor products and services unless covered by the 
scope of another CNA.
Top-Level Root: MITRE
Disclosure Policy location: https://www.hihonor.com/global/security/
Advisory location: https://www.hihonor.com/global/security/
Public point of contact:  secur...@hihonor.com
CNA Type: Vendors and Projects
Organization Name: Zowe
Org Short Name: Zowe
Organization Location: USA
Scope: Vulnerabilities in Zowe.org open-source projects.
Top-Level Root: MITRE
Disclosure Policy location: https://zowe.org/security.html
Advisory location: https://github.com/zowe/community/security/advisories
Public point of contact: 
zowe-secur...@lists.openmainframeproject.org
CNA Type: Vendors and Projects

Total Partners: 254
Total Countries: 35


Respectfully,
CVE Program Secretariat
cve-prog-secretar...@mitre.org

[A picture containing text, clipart  Description automatically generated]