ATLANTA, GEORGIA – AMI has been authorized by the Common Vulnerabilities and Exposures (CVE®) Program as a CVE Numbering Authority (CNA). This privilege will enable AMI to identify, define, catalog and publicly disclose cybersecurity vulnerabilities that affect AMI firmware and software products with greater transparency in the industry.
“We look forward to partnering with the CVE Program as a CNA to publish CVE records and communicate vulnerabilities timely, with transparency around the world,” says Samuel Cure, Chief Information Security Officer (CISO) at AMI. “AMI will continue to partner with CVE Program and coordinate our efforts to help prioritize and address the vulnerabilities throughout the supply chain.”
Benefits to AMI customers and partners include the following:
-
-
- Greater commitment to cybersecurity throughout the supply chain
- More streamlined vulnerability disclosure processes
- Timely communication of vulnerability information across the industry
- Mature vulnerability management practices
- Full transparency of vulnerability information for issues affecting open-source products
-
About the CVE Program:
The mission of the Common Vulnerabilities and Exposures (CVE®) Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. There is one CVE Record for each vulnerability in the catalog. The vulnerabilities are discovered then assigned and published by organizations from around the world that have partnered with the CVE Program. Partners, called CNAs, publish CVE Records to communicate consistent descriptions of vulnerabilities. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue and to coordinate their efforts to prioritize and address the vulnerabilities.
CVE® is a registered trademark of the MITRE Corporation in the US and/or elsewhere. All other trademarks and registered trademarks are the property of their respective owners.