Merge pull request #3645 from CVEProject/7/22/25ReleaseBranch

7/22/25 release branch to INT

Author: rroberge

src/assets/data/CNAsList.json

@@ -12636,26 +12636,31 @@
         "email": [
           {
             "label": "Email",
-            "emailAddr": "contato@full.services"
+            "emailAddr": "cve@wpfull.com.br"
+          }
+        ],
+        "contact": [
+          {
+            "label": "FULL security contact page",
+            "url": "https://security.full.services/enviar-vulnerabilidade/"
           }
         ],
-        "contact": [],
         "form": []
       }
     ],
     "disclosurePolicy": [
       {
         "label": "Policy",
         "language": "",
-        "url": "https://security.fullstackagency.club/enviar-vulnerabilidade/"
+        "url": "https://security.full.services/politica-de-divulgacao-de-vulnerabilidades/"
       }
     ],
     "securityAdvisories": {
       "alerts": [],
       "advisories": [
         {
           "label": "Advisories",
-          "url": "https://security.fullstackagency.club/"
+          "url": "https://security.full.services/vulnerabilidades-no-wordpress/"
         }
       ]
     },
@@ -26369,5 +26374,118 @@
       ]
     },
     "country": "Switzerland"
+  },
+  {
+    "shortName": "TCS-CERT",
+    "cnaID": "CNA-2025-0035",
+    "organizationName": "TCS-CERT (Thales Cyber Solutions Customer’s CERT)",
+    "scope": "Vulnerabilities related to TCS-CERT’s customers’ environment and vulnerabilities related to research conducted by Cyber Solutions by Thales’ Intrusion and Application Security Team.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "team@tcs-cert.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://cds.thalesgroup.com/en/tcs-cert/advisory"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://cds.thalesgroup.com/en/tcs-cert/advisory"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "THA-PSIRT",
+        "organizationName": "Thales Group"
+      },
+      "type": [
+        "CERT"
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "Belgium"
+  },
+  {
+    "shortName": "rust",
+    "cnaID": "CNA-2025-0036",
+    "organizationName": "The Rust Project",
+    "scope": "Repositories, packages, and websites maintained by the Rust Project. More details: <a href='https://www.rust-lang.org/policies/security#scope' target='_blank'>https://www.rust-lang.org/policies/security#scope</a>.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "security@rust-lang.org"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://www.rust-lang.org/policies/security"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://groups.google.com/g/rustlang-security-announcements"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "redhat",
+        "organizationName": "Red Hat, Inc."
+      },
+      "type": [
+        "Vendor",
+        "Open Source"
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "USA"
   }
 ]

src/assets/data/metrics.json

@@ -1196,7 +1196,7 @@
         },
         {
           "month": "July",
-          "value": "4"
+          "value": "6"
         },
         {
           "month": "August",

src/assets/data/news.json

@@ -1,5 +1,64 @@
 {
   "currentNews": [
+    {
+      "id": 552,
+      "newsType": "news",
+      "title": "The Rust Project Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "The Rust Project Added as CNA",
+      "date": "2025-07-22",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/rust'>The Rust Project</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for repositories, packages, and websites maintained by the Rust Project. More details: <a href='https://www.rust-lang.org/policies/security#scope' target='_blank'>https://www.rust-lang.org/policies/security#scope</a>."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>460 CNAs</a> (457 CNAs and 3 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>39 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. The Rust Project is the 251st CNA from USA."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "The Rust Project’s Root is the <a href='/PartnerInformation/ListofPartners/partner/redhat'>Red Hat Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 551,
+      "newsType": "news",
+      "title": "TCS-CERT Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "TCS CERT Added as CNA",
+      "date": "2025-07-22",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/TCS-CERT'>TCS-CERT</a> (Thales Cyber Solutions Customer’s CERT) is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for vulnerabilities related to TCS-CERT’s customers’ environment and vulnerabilities related to research conducted by Cyber Solutions by Thales’ Intrusion and Application Security Team."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>459 CNAs</a> (456 CNAs and 3 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>39 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. TCS-CERT is the 5th CNA from Belgium."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "TCS-CERT’s Root is the <a href='/PartnerInformation/ListofPartners/partner/THA-PSIRT'>Thales Group Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 550,
+      "newsType": "news",
+      "title": "Minutes from CVE Board Teleconference Meeting on July 9 Now Available",
+      "urlKeywords": "CVE Board Minutes from July 9",
+      "date": "2025-07-22",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "The <a href='/ProgramOrganization/Board'>CVE Board</a> held a teleconference meeting on July 9, 2025. Read the <a href='https://www.mail-archive.com/cve-editorial-board-list@mitre.org/msg00283.html' target='_blank'>meeting minutes summary</a>."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "The CVE Board is the organization responsible for the strategic direction, governance, operational structure, policies, and rules of the CVE Program. The Board includes members from numerous cybersecurity-related organizations including commercial security tool vendors, academia, research institutions, government departments and agencies, and other prominent security experts, as well as end-users of vulnerability information."
+        }
+      ]
+    },
     {
       "id": 549,
       "newsType": "blog",

src/views/ProgramOrganization/WorkingGroups.vue

@@ -148,7 +148,7 @@
               {{cvenavs['Program Organization']['submenu']['Working Groups']['items']['CVE Consumer Working Group (CWG)']['label']}}
             </h2>
             <p>
-              Chair: TBA
+              Chair: Jay Jacobs
             </p>
             <p>
               The CWG serves as a dedicated forum for representing the perspectives of end-consumers of CVE List data, such as enterprises,
@@ -185,7 +185,7 @@
                   </h3>
                   <ul class="tile-body cve-task-tile-list">
                     <li class="cve-task-tile-list-item">
-                      TBA
+                      <a href="https://github.com/CVEProject/consumer-working-group" target="_blank">CWG GitHub Repository</a>
                     </li>
                   </ul>
                 </article>
@@ -381,7 +381,7 @@
               {{cvenavs['Program Organization']['submenu']['Working Groups']['items']['Strategic Planning Working Group (SPWG)']['label']}}
             </h2>
             <p>
-              Chair: Kent Landfield
+              Co-Chairs: Kent Landfield and Art Manion
             </p>
             <p>
               The SPWG is focused on the long-term strategy (1-5 years) and goals of the CVE Program; will work closely with the