Merge pull request #3618 from CVEProject/int

jdaigneau5 · web-flow · commit 25d4e9b597d3 · 2025-06-17T16:29:56.000-04:00
6/17/25 Release: INT to MAIN
diff --git a/src/assets/data/CNAsList.json b/src/assets/data/CNAsList.json
@@ -17624,15 +17624,15 @@
       {
         "label": "Policy",
         "language": "",
-        "url": "https://www.securin.io/disclosure-policy/"
+        "url": "https://www.securin.io/disclosure-policy"
       }
     ],
     "securityAdvisories": {
       "alerts": [],
       "advisories": [
         {
           "label": "Advisories",
-          "url": "https://www.securin.io/zero-days-list/"
+          "url": "https://www.securin.io/discover-zero-days"
         }
       ]
     },
@@ -26140,5 +26140,61 @@
       ]
     },
     "country": "USA"
+  },
+  {
+    "shortName": "Toreon",
+    "cnaID": "CNA-2025-0031",
+    "organizationName": "Toreon",
+    "scope": "Vulnerabilities discovered by or reported to Toreon that are not in another CNA’s scope.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "disclosure@toreon.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://www.toreon.com/cna-disclosure-policy/"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://www.toreon.com/news/"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "n/a",
+        "organizationName": "n/a"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "type": [
+        "Researcher"
+      ]
+    },
+    "country": "Belgium"
   }
 ]
diff --git a/src/assets/data/NotificationBanner.json b/src/assets/data/NotificationBanner.json
@@ -18,12 +18,12 @@
     },
     {
       "contentType": "paragraph",
-      "content": "is now available in the search box above. Text searches may include CVE IDs (e.g., “CVE-2025-1234”), CWE-IDs (e.g., “CWE-123”), exact version strings (e.g., “6.17.4”), exact IPv4 strings, file names, URLs, combinations of search terms (e.g., “apache cwe-502 cve-2025”), and"
+      "content": "is now available in the search box above. Learn more"
     },
     {
       "contentType": "internalLink",
       "link": "/Media/News/item/blog/2025/06/11/CVE-List-Keyword-Search-Updated",
-      "linkText": "more"
+      "linkText": "here"
     },
     {
       "contentType": "paragraph",
diff --git a/src/assets/data/faqs.json b/src/assets/data/faqs.json
@@ -271,7 +271,14 @@
 				"questionId": "search_cve",
 				"questionText": "How do I search the CVE List",
 				"questionResponseParagraphs": [
-					"You may search using:<br/><ul><li><strong>IDs</strong><ul><li>CVE ID<ul><li>Specific <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE ID</a> (e.g., “CVE-2015-8405”)</li><li>Note that this returns records where there is a match for the CVE ID anywhere in the CVE Record (e.g., “CVE-2015-8405” returns the CVE named, as well as any CVEs that have that CVE ID in other fields, such as in the description)</li><li>The nominal CVE ID Year (e.g., “CVE-2025” returns all CVEs reserved in the CVE-2025 year series)</li><li>The year must be a full year (e.g., “CVE-202” is invalid and will produce no results)</li></ul></li><li>CWE ID<ul><li>Specific <a href='/About/RelatedEfforts#CWE'>Common Weakness Enumeration (CWE&trade;)</a> entries (e.g., “CWE-123”)</li></ul></li><li> CAPEC ID<ul><li>Specific <a href='/About/RelatedEfforts#CAPEC'>Common Attack Pattern Enumerations and Classification (CAPEC&trade;)</a> entries (e.g., “CAPEC-123”)</li></ul></li></ul></li><li><strong>General</strong><ul><li>All CVE Record fields are searched when using the search box on CVE.ORG. However, if the search comprises more than one keyword, all keywords must be present in a given field for the record to be returned</li><li>Note that if you provide multiple CVE IDs, the search will only return results that contain ALL CVE IDs you specify in each record, which may not be what you expect</li><li>Search terms are case-insensitive and may contain words of alphanumeric and Unicode characters</li><li>Supported search scenarios include:<ul><li>Hyphenated words (e.g., “man-in-the-middle”)</li><li>Exact version strings (e.g., “6.17.4”)<li>Exact IPv4 strings (e.g., “127.0.0.1”)</li><li>Exact filenames (e.g., “main.cpp”)</li><li>URLs (e.g., “http://www.ibm.com/support/docview.wss?uid”)</li><li>Combination of any of the above: by separating terms with a space you can search for CVEs that contain ALL of the specified search terms (e.g., “apache cwe-502 cve-2025” will return all CVEs each of which containing all 3 terms)</li></ul></li><li>Symbols currently not supported are:\u00a0\u00a0\u00a0() {} [] \" ' ` &lt;&gt; | ; ! ~ ^ * + %</li></ul></li></ul>"
+					"You may search using:<br/><ul><li><strong>IDs</strong><ul><li>CVE ID<ul><li>Specific <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE ID</a> (e.g., “CVE-2015-8405”)</li><li>Note that this returns records where there is a match for the CVE ID anywhere in the CVE Record (e.g., “CVE-2015-8405” returns the CVE named, as well as any CVEs that have that CVE ID in other fields, such as in the description)</li><li>The nominal CVE ID Year (e.g., “CVE-2025” returns all CVEs reserved in the CVE-2025 year series)</li><li>The year must be a full year (e.g., “CVE-202” is invalid and will produce no results)</li></ul></li><li>CWE ID<ul><li>Specific <a href='/About/RelatedEfforts#CWE'>Common Weakness Enumeration (CWE&trade;)</a> entries (e.g., “CWE-123”)</li></ul></li><li> CAPEC ID<ul><li>Specific <a href='/About/RelatedEfforts#CAPEC'>Common Attack Pattern Enumerations and Classification (CAPEC&trade;)</a> entries (e.g., “CAPEC-123”)</li></ul></li></ul></li><li><strong>General</strong><ul><li>Note that if you provide multiple CVE IDs, the search will only return results that contain ALL CVE IDs you specify in each record, which may not be what you expect</li><li>Search terms are case-insensitive and may contain words of alphanumeric and Unicode characters</li><li>Supported search scenarios include:<ul><li>Hyphenated words (e.g., “man-in-the-middle”)</li><li>Exact version strings (e.g., “6.17.4”)<li>Exact IPv4 strings (e.g., “127.0.0.1”)</li><li>Exact filenames (e.g., “main.cpp”)</li><li>URLs (e.g., “http://www.ibm.com/support/docview.wss?uid”)</li></ul></li><li>Symbols currently not supported are:\u00a0\u00a0\u00a0() {} [] \" ' ` &lt;&gt; | ; ! ~ ^ * + %</li></ul></li></ul>"
+				]
+			},
+			{
+				"questionId": "search_cve_and",
+				"questionText": "In the search box on CVE.ORG, what CVE Record fields are searched",
+				"questionResponseParagraphs": [
+					"All CVE Record fields are searched when using the search box on CVE.ORG. However, if the search comprises more than one keyword, all keywords must be present in a given field for the record to be returned."
 				]
 			},
 			{
diff --git a/src/assets/data/metrics.json b/src/assets/data/metrics.json
@@ -1149,7 +1149,7 @@
         },
         {
           "month": "June",
-          "value": "3"
+          "value": "4"
         },
         {
           "month": "July",
diff --git a/src/assets/data/news.json b/src/assets/data/news.json
diff --git a/src/views/ResourcesSupport/Resources.vue b/src/views/ResourcesSupport/Resources.vue
@@ -56,7 +56,7 @@
                         </li>
                         <li>
                           <router-link to="/Resources/General/End-of-Life-EOL-Assignment-Process.pdf" target="_blank">
-                            End-of-Life (EOL) Assignment Policy (PDF, 0.3MB)
+                            End-of-Life (EOL) Assignment Process (PDF, 0.3MB)
                           </router-link>
                           <br/><span class="cve-help-text">Establishes the policy for the EOL CVE assignment process</span>
                         </li>
@@ -135,7 +135,7 @@
                   </li>
                   <li>
                     <router-link to="/Resources/General/End-of-Life-EOL-Assignment-Process.pdf" target="_blank">
-                      End-of-Life (EOL) Assignment Policy (PDF, 0.3MB)
+                      End-of-Life (EOL) Assignment Process (PDF, 0.3MB)
                     </router-link>
                   </li>
                   <li>

Original file line number	Diff line number	Diff line change
`@@ -18,12 +18,12 @@`
`18`	`18`	`},`
`19`	`19`	`{`
`20`	`20`	`"contentType": "paragraph",`
`21`		`- "content": "is now available in the search box above. Text searches may include CVE IDs (e.g., “CVE-2025-1234”), CWE-IDs (e.g., “CWE-123”), exact version strings (e.g., “6.17.4”), exact IPv4 strings, file names, URLs, combinations of search terms (e.g., “apache cwe-502 cve-2025”), and"`
	`21`	`+ "content": "is now available in the search box above. Learn more"`
`22`	`22`	`},`
`23`	`23`	`{`
`24`	`24`	`"contentType": "internalLink",`
`25`	`25`	`"link": "/Media/News/item/blog/2025/06/11/CVE-List-Keyword-Search-Updated",`
`26`		`- "linkText": "more"`
	`26`	`+ "linkText": "here"`
`27`	`27`	`},`
`28`	`28`	`{`
`29`	`29`	`"contentType": "paragraph",`
Original file line number	Diff line number	Diff line change
`@@ -1149,7 +1149,7 @@`
`1149`	`1149`	`},`
`1150`	`1150`	`{`
`1151`	`1151`	`"month": "June",`
`1152`		`- "value": "3"`
	`1152`	`+ "value": "4"`
`1153`	`1153`	`},`
`1154`	`1154`	`{`
`1155`	`1155`	`"month": "July",`