Mirantis Joins Mission of the Common Vulnerabilities and Exposures (CVE) Program

Jan 18, 2022

By Henson Gawliu

Initiative to identify, define and catalog publicly-disclosed cybersecurity vulnerabilities

CAMPBELL, Calif., January 18, 2022 — Mirantis, the open cloud company, today announced the company’s designation as a CVE Numbering Authority (CNA) by the CVE Program, which is sponsored by the U.S. Department of Homeland Security. As a CNA, the Mirantis Product Security Incident Response Team (PSIRT) is authorized to assign CVE identification numbers to security vulnerabilities in Mirantis products.

As a newly designated CNA, Mirantis now can streamline the process of publishing accurate and timely vulnerability information so its users are well informed and able to quickly resolve security vulnerabilities.

“Security has always been a priority and now as a CNA, we’ll join the industry initiative to have a consistent, standardized way of disclosing known vulnerabilities, so there can be a structured, coordinated approach to resolution for our users,” said Adam Parco, CTO, Mirantis.

The CVE Program is an international, community-based effort that relies on the community to discover vulnerabilities. The vulnerabilities are discovered then assigned and published to the CVE List. Partners, like Mirantis, publish CVE Records to communicate consistent descriptions of vulnerabilities. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue, and to coordinate their efforts to prioritize and address the vulnerabilities.

The CVE Program is sponsored by the Cybersecurity and Infrastructure Security Agency (CISA) of the U.S. Department of Homeland Security (DHS) and is operated by the MITRE Corporation in close collaboration with international industry, academic, and government stakeholders.

About the CVE Program  

The mission of the Common Vulnerabilities and Exposures (CVE) Program is to identify, define, and catalog publicly-disclosed cybersecurity vulnerabilities. There is one CVE Record for each vulnerability in the catalog. The vulnerabilities are discovered then assigned and published by organizations from around the world that have partnered with the CVE Program. Partners publish CVE Records to communicate consistent descriptions of vulnerabilities. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue, and to coordinate their efforts to prioritize and address the vulnerabilities.  

Or share via:

PR Contact

Joseph Eckert for Mirantis

jeckert@eckertcomms.com

About Mirantis

Mirantis helps organizations simplify operations, reduce complexity, and accelerate innovation by providing open-source solutions for delivering and managing modern distributed applications at scale. The company enables platform engineering teams to build and operate secure, scalable, and customizable developer platforms across any environment—on-premises, public cloud, hybrid, or edge. As AI-driven workloads become a core component of modern architectures, Mirantis provides the automation, multi-cloud orchestration, and infrastructure flexibility required to support high-performance AI, machine learning, and data-intensive applications. Committed to open standards and avoiding vendor lock-in, Mirantis empowers organizations to deploy and operate infrastructure and services on their terms.

Mirantis serves many of the world’s leading enterprises, including Adobe, Ericsson, Inmarsat, PayPal, and Societe Generale. Learn more at www.mirantis.com.