I know the CVE Board won't agree but IMO VMware's CNA status should be revoked because of this.
In fact, any vendor CNA that regwalls or paywalls security advisories should have their status revoked.
But, hey, what do I know. I’ve just defended enterprises for 30+ years and had to fight every vendor pretty much that entire time.
https://infosec.exchange/@screaminggoat/112405551377366717
boB Rudis 🇺🇦 #NeverGoingBack /
npub1ww…fs6tf
2024-05-08 12:58:42
Author Public Key
npub1ww9r2llfqa6su6pkyv8qff729e0cz8cv6xtjckz4gm3ug3v72p6stfs6tfPublished at
2024-05-08 12:58:42Event JSON
{
"id": "a9057a91029f8cf9345ee95de45c6ae27c418477c30c6a5b5beec55a56c8f7a0",
"pubkey": "738a357fe907750e6836230e04a7ca2e5f811f0cd1972c585546e3c4459e5075",
"created_at": 1715173122,
"kind": 1,
"tags": [
[
"proxy",
"https://mastodon.social/@hrbrmstr/112405585772103858",
"web"
],
[
"proxy",
"https://mastodon.social/users/hrbrmstr/statuses/112405585772103858",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://mastodon.social/users/hrbrmstr/statuses/112405585772103858",
"pink.momostr"
]
],
"content": "I know the CVE Board won't agree but IMO VMware's CNA status should be revoked because of this.\n\nIn fact, any vendor CNA that regwalls or paywalls security advisories should have their status revoked.\n\nBut, hey, what do I know. I’ve just defended enterprises for 30+ years and had to fight every vendor pretty much that entire time.\nhttps://infosec.exchange/@screaminggoat/112405551377366717",
"sig": "3ce24ff56af8ba9abe0826917c83252efd8ba7bc2da0a57e01d1d49514a044bb27dfc9a67c8f8605238f5e7feeb1904bf4d3ff0834bef8d5f07b79d66183e4d3"
}