“Root” CVE Numbering Authorities (CNAs) manage a group of sub-CNAs within a given domain or community. Examples of organizations currently participating as Root CNAs include Distributed Weakness Filing Project, JPCERT/CC, and the CVE Program Root CNA (currently MITRE Corporation).

Submitting to Root CNAs

Each Root CNA listed above has its own process for accepting CVE Entries from CNAs. Contact a specific Root CNA directly to request their specific submission requirements.

Submitting to the Program Root CNA

A pilot program for CNAs to submit CVE Entries to the Program Root CNA using JSON is currently being hosted on the CVEProject website on GitHub.com. All CNAs are eligible to participate in the pilot.

CNAs may also continue to use the CVE ID Request web form to submit CVE Entries to the Program Root CNA.

Resources

Help

For help, contact the CVE Program Root CNA: