INCIBE-CNA
commented
6 months ago Please find attache the vulenrability details.
Open INCIBE-CNA opened 7 months ago
INCIBE-CNA
commented
6 months ago Please find attache the vulenrability details.
Dear sentrifugo team,
We are writing to you from INCIBE (https://www.incibe.es), the National Institute of Cybersecurity of Spain, about multiple vulnerabilities reported by an external researcher in one of your products.
We participate in the CVE Program as a CNA Root (https://www.cve.org/ProgramOrganization/Structure) , which enables us to assign and publish CVE codes.
Note that this report is not about an incident, nobody is exploiting the vulnerabilities. Simply, from INCIBE we take care of managing the CVE report, documentation and publication, in coordination with the affected parties.
As established in our disclosure policy (https://www.incibe.es/en/incibe-cert/early-warning/vulnerabilities/cve-assignment-publication), we are going to make this vulnerabilities public by the first week of January.
Is it possible to obtain some point of contact to send the vulenrability drafts ?.
Thank you very much and kind regards,