Merge pull request #1889 from 'content-rjr-1875' into dev

Author: athu-tran

src/assets/data/CNAsList.json

@@ -5203,16 +5203,16 @@
     "country": "USA"
   },
   {
-    "shortName": "microfocus",
+    "shortName": "OpenText",
     "cnaID": "CNA-2014-0002",
-    "organizationName": "Micro Focus International",
-    "scope": "All Attachmate, Borland, Gwava, Micro Focus, NetIQ, Novell, and Serena products, as well as all former HP Enterprise software suites",
+    "organizationName": "OpenText (formerly Micro Focus)",
+    "scope": "All OpenText products (including Carbonite, Zix, Micro Focus, others)",
     "contact": [
       {
         "email": [
           {
             "label": "Email",
-            "emailAddr": "security@microfocus.com"
+            "emailAddr": "security@opentext.com"
           }
         ],
         "contact": [],
@@ -5223,15 +5223,15 @@
       {
         "label": "Policy",
         "language": "",
-        "url": "https://www.microfocus.com/security"
+        "url": "https://www.opentext.com/about/security-acknowledgements"
       }
     ],
     "securityAdvisories": {
       "alerts": [],
       "advisories": [
         {
           "label": "Advisories",
-          "url": "https://portal.microfocus.com/s/customportalsearch?language=en_US"
+          "url": "https://knowledge.opentext.com/knowledge/llisapi.dll/open/alerts"
         }
       ]
     },
@@ -16430,5 +16430,120 @@
                   ]
                 },
                 "country": "USA"
+              },
+              {
+                "shortName": "Ribose",
+                "cnaID": "CNA-2023-0023",
+                "organizationName": "Ribose Limited",
+                "scope": "All Ribose products and services, including open-source projects, supported products, and end-of-life/end-of-service products",
+                "contact": [
+                  {
+                    "email": [
+                      {
+                        "label": "Email",
+                        "emailAddr": "cve-coordination@ribose.com"
+                      }
+                    ],
+                    "contact": [],
+                    "form": []
+                  }
+                ],
+                "disclosurePolicy": [
+                  {
+                    "label": "Policy",
+                    "language": "",
+                    "url": "https://open.ribose.com/cve-policy/"
+                  }
+                ],
+                "securityAdvisories": {
+                  "alerts": [],
+                  "advisories": [
+                    {
+                      "label": "Advisories",
+                      "url": "https://open.ribose.com/advisories/"
+                    }
+                  ]
+                },
+                "resources": [],
+                "CNA": {
+                  "isRoot": false,
+                  "root": {
+                    "shortName": "n/a",
+                    "organizationName": "n/a"
+                  },
+                  "roles": [
+                    {
+                      "helpText": "",
+                      "role": "CNA"
+                    }
+                  ],
+                  "TLR": {
+                    "shortName": "mitre",
+                    "organizationName": "MITRE Corporation"
+                  },
+                  "type": [
+                    "Hosted Service",
+                    "Open Source",
+                    "Vendor"
+                  ]
+                },
+                "country": "UK"
+
+              },
+              {
+                "shortName": "42Gears",
+                "cnaID": "CNA-2023-0024",
+                "organizationName": "42Gears Mobility Systems Pvt Ltd",
+                "scope": "42Gears branded products and technologies only",
+                "contact": [
+                  {
+                    "email": [
+                      {
+                        "label": "Email",
+                        "emailAddr": "security@42gears.com"
+                      }
+                    ],
+                    "contact": [],
+                    "form": []
+                  }
+                ],
+                "disclosurePolicy": [
+                  {
+                    "label": "Policy (click on “Security Response Center”)",
+                    "language": "",
+                    "url": "https://www.42gears.com/security-and-compliance/"
+                  }
+                ],
+                "securityAdvisories": {
+                  "alerts": [],
+                  "advisories": [
+                    {
+                      "label": "Advisories (click on “Security Advisories”)",
+                      "url": "https://www.42gears.com/security-and-compliance/"
+                    }
+                  ]
+                },
+                "resources": [],
+                "CNA": {
+                  "isRoot": false,
+                  "root": {
+                    "shortName": "n/a",
+                    "organizationName": "n/a"
+                  },
+                  "roles": [
+                    {
+                      "helpText": "",
+                      "role": "CNA"
+                    }
+                  ],
+                  "TLR": {
+                    "shortName": "icscert",
+                    "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)"
+                  },
+                  "type": [
+                    "Vendor"
+                  ]
+                },
+                "country": "India"
       }
     ]

src/assets/data/news.json

@@ -1,5 +1,47 @@
 {
   "currentNews": [
+    {
+      "id": 200,
+      "newsType": "news",
+      "title": "42Gears Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "42Gears Added as CNA",
+      "date": "2023-04-25",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/42Gears'>42Gears Mobility Systems Pvt Ltd</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for 42Gears branded products and technologies only."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>287</a> organizations from <a href='/ProgramOrganization/CNAs'>36</a> countries have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "42Gears’s Root is the <a href='/PartnerInformation/ListofPartners/partner/icscert'>CISA ICS Top-Level Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 200,
+      "newsType": "news",
+      "title": "Ribose Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "Ribose Added as CNA",
+      "date": "2023-04-25",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/Ribose'>Ribose Limited</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for all Ribose products and services, including open-source projects, supported products, and end-of-life/end-of-service products. Read the <a href='https://www.ribose.com/blog/2023/2023-04-24-ribose-authorized-as-cna-by-cve-program' target='_blank'>Ribose news release</a>."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>286</a> organizations from <a href='/ProgramOrganization/CNAs'>36</a> countries have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "Ribose’s Root is the <a href='/PartnerInformation/ListofPartners/partner/mitre'>MITRE Top-Level Root</a>."
+        }
+      ]
+    },
     {
       "id": 199,
       "displayOnHomepageOrder": 2,
@@ -48,7 +90,7 @@
       "description": [
         {
           "contentnewsType": "paragraph",
-          "content": "<a href='/PartnerInformation/ListofPartners/partner/Halborn'>Halborn</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for all blockchain and Web3 products that rely on smart contracts written in Rust, Go, and Solidity, as well as blockchain associated Web2 and Web3 infrastructure not covered by another CNA."
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/Halborn'>Halborn</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for all blockchain and Web3 products that rely on smart contracts written in Rust, Go, and Solidity, as well as blockchain associated Web2 and Web3 infrastructure not covered by another CNA. Read the <a href='https://www.accesswire.com/748114/Web3-Security-Firm-Halborn-Authorized-by-CVE-Program-as-a-CNA' target='_blank'>Halborn news release</a>."
         },
         {
           "contentnewsType": "paragraph",
@@ -6290,4 +6332,4 @@
       "url": "/Resources/Media/Archives/PressReleases/1999-2019_CVE-Program-Press-Releases-Archive.pdf"      
     }
   ]
-}
+}