3/17/26 release

Author: rlxdev

src/assets/data/CNAsList.json

@@ -7955,62 +7955,6 @@
     },
     "country": "Spain"
   },
-  {
-    "shortName": "Splunk",
-    "cnaID": "CNA-2019-0012",
-    "organizationName": "Splunk Inc.",
-    "scope": "Splunk products only.",
-    "contact": [
-      {
-        "email": [
-          {
-            "label": "Email",
-            "emailAddr": "prodsec@splunk.com"
-          }
-        ],
-        "contact": [],
-        "form": []
-      }
-    ],
-    "disclosurePolicy": [
-      {
-        "label": "Policy",
-        "language": "",
-        "url": "https://www.splunk.com/page/securityportal"
-      }
-    ],
-    "securityAdvisories": {
-      "alerts": [],
-      "advisories": [
-        {
-          "label": "Advisories",
-          "url": "https://www.splunk.com/page/securityportal"
-        }
-      ]
-    },
-    "resources": [],
-    "CNA": {
-      "isRoot": false,
-      "root": {
-        "shortName": "n/a",
-        "organizationName": "n/a"
-      },
-      "type": [
-        "Vendor"
-      ],
-      "TLR": {
-        "shortName": "mitre",
-        "organizationName": "MITRE Corporation"
-      },
-      "roles": [
-        {
-          "helpText": "",
-          "role": "CNA"
-        }
-      ]
-    },
-    "country": "USA"
-  },
   {
     "shortName": "suse",
     "cnaID": "CNA-2014-0003",
@@ -28584,5 +28528,61 @@
       ]
     },
     "country": "Uzbekistan"
+  },
+  {
+    "shortName": "BombadilSystems",
+    "cnaID": "CNA-2026-0014",
+    "organizationName": "Bombadil Systems LLC",
+    "scope": "Vulnerabilities in third-party software discovered by Bombadil Systems that are not in another CNA’s scope.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "cve@bombadil.systems"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://bombadil.systems/disclosure.html"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://bombadil.systems/advisories.html"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "n/a",
+        "organizationName": "n/a"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "type": [
+        "Researcher"
+      ]
+    },
+    "country": "USA"
   }
 ]

src/assets/data/boardMeetings.json

@@ -1,5 +1,9 @@
 {
   "2026": [
+    {
+      "name": "February 4, 2026 - teleconference",
+      "path": "msg00317.html"
+    },
     {
       "name": "January 21, 2026 - teleconference",
       "path": "msg00314.html"

src/assets/data/metrics.json

@@ -1180,7 +1180,7 @@
         },
         {
           "month": "March",
-          "value": "2"
+          "value": "3"
         },
         {
           "month": "April",

src/assets/data/news.json

@@ -1,7 +1,46 @@
 {
   "currentNews": [
+    {
+      "id": 640,
+      "newsType": "news",
+      "title": "Bombadil Systems Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "Bombadil Systems Added as CNA",
+      "date": "2026-03-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/BombadilSystems'>Bombadil Systems LLC</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for vulnerabilities in third-party software discovered by Bombadil Systems that are not in another CNA’s scope."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>497 CNAs</a> (494 CNAs and 3 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>42 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. Bombadil Systems is the 266th CNA from USA."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "Bombadil Systems’ Root is the <a href='/PartnerInformation/ListofPartners/partner/mitre'>MITRE TL-Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 639,
+      "newsType": "news",
+      "title": "Minutes from CVE Board Teleconference Meeting on February 4 Now Available",
+      "urlKeywords": "CVE Board Minutes from February 4",
+      "date": "2026-03-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "The <a href='/ProgramOrganization/Board'>CVE Board</a> held a teleconference meeting on February 4, 2026. Read the <a href='https://www.mail-archive.com/cve-editorial-board-list@mitre.org/msg00317.html' target='_blank'>meeting minutes summary</a>."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "The CVE Board is the organization responsible for the strategic direction, governance, operational structure, policies, and rules of the CVE Program. The Board includes members from numerous cybersecurity-related organizations including commercial security tool vendors, academia, research institutions, government departments and agencies, and other prominent security experts, as well as end-users of vulnerability information."
+        }
+      ]
+    },
     {
       "id": 638,
+      "displayOnHomepageOrder": 1,
       "newsType": "blog",
       "title": "Full Agenda Now Available for <i>CVE/FIRST VulnCon 2026</i> on April 13-16, 2026!",
       "urlKeywords": "Full Agenda for VulnCon 2026",