Merge pull request #3088 from CVEProject/content-rjr-3071

#3071 Add 3 new CNAs + Update 1 CNA's info

Author: jdaigneau5

src/assets/data/CNAsList.json

@@ -5271,7 +5271,7 @@
     "shortName": "Mitsubishi",
     "cnaID": "CNA-2020-0039",
     "organizationName": "Mitsubishi Electric Corporation",
-    "scope": "Mitsubishi Electric issues only",
+    "scope": "Vulnerabilities related to products of Mitsubishi Electric Group",
     "contact": [
       {
         "email": [
@@ -5288,7 +5288,7 @@
       {
         "label": "Policy",
         "language": "",
-        "url": "https://www.mitsubishielectric.com/en/psirt/index.html"
+        "url": "https://www.mitsubishielectric.com/en/psirt/disclosurepolicy/index.html"
       }
     ],
     "securityAdvisories": {
@@ -23311,5 +23311,173 @@
       ]
     },
     "country": "USA"
+  },
+  {
+    "shortName": "Arxscan",
+    "cnaID": "CNA-2024-0062",
+    "organizationName": "Arxscan, Inc.",
+    "scope": "Arxscan issues only",
+    "contact": [
+      {
+        "email": [],
+        "contact": [
+          {
+            "label": "Arxscan Report a Vulnerability page",
+            "url": "https://arxscan.com/cybersecurity-vulnerability-policy/report-a-vulnerability"
+          }
+        ],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://arxscan.com/cybersecurity-vulnerability-policy"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://arxscan.com/cybersecurity-vulnerability-policy/security-advisories"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "n/a",
+        "organizationName": "n/a"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "type": [
+        "Vendor"
+      ]
+    },
+    "country": "USA"
+  },
+  {
+    "shortName": "PlexTrac",
+    "cnaID": "CNA-2024-0063",
+    "organizationName": "PlexTrac, Inc.",
+    "scope": "Vulnerabilities within PlexTrac’s products",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "security@plextrac.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://plextrac.com/vulnerability-disclosure/"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://docs.plextrac.com/plextrac-documentation/master/security-advisories"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "n/a",
+        "organizationName": "n/a"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "type": [
+        "Vendor"
+      ]
+    },
+    "country": "USA"
+  },
+  {
+    "shortName": "ASUS",
+    "cnaID": "CNA-2024-0064",
+    "organizationName": "ASUSTeK Computer Incorporation",
+    "scope": "ASUS issues only",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "security@asus.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://www.asus.com/content/asus-product-security-advisory/"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://www.asus.com/content/asus-product-security-advisory/"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "icscert",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "CISA",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA)"
+      },
+      "type": [
+        "Vendor"
+      ]
+    },
+    "country": "Taiwan"
   }
 ]

src/assets/data/metrics.json

@@ -1161,7 +1161,7 @@
         },
         {
           "month": "September",
-          "value": "4"
+          "value": "7"
         },
         {
           "month": "October",

src/assets/data/news.json

@@ -1,5 +1,68 @@
 {
   "currentNews": [
+    {
+      "id": 410,
+      "newsType": "news",
+      "title": "ASUS Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "ASUS Added as CNA",
+      "date": "2024-09-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/ASUS'>ASUSTeK Computer Incorporation</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for ASUS issues only."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>407 CNAs</a> (405 CNAs and 2 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>40 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. ASUS is the 11th CNA from Taiwan."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "ASUS’ Root is the <a href='/PartnerInformation/ListofPartners/partner/icscert'>CISA ICS Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 409,
+      "newsType": "news",
+      "title": "PlexTrac Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "PlexTrac Added as CNA",
+      "date": "2024-09-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/PlexTrac'>PlexTrac, Inc.</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for vulnerabilities within PlexTrac’s products."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>406 CNAs</a> (404 CNAs and 2 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>40 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. PlexTrac is the 219th CNA from USA."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "PlexTrac’s Root is the <a href='/PartnerInformation/ListofPartners/partner/mitre'>MITRE Top-Level Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 408,
+      "newsType": "news",
+      "title": "Arxscan Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "Arxscan Added as CNA",
+      "date": "2024-09-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/Arxscan'>Arxscan, Inc.</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for Arxscan issues only."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>405 CNAs</a> (403 CNAs and 2 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>40 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. Arxscan is the 218th CNA from USA."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "Arxscan’s Root is the <a href='/PartnerInformation/ListofPartners/partner/mitre'>MITRE Top-Level Root</a>."
+        }
+      ]
+    },
     {
       "id": 407,
       "newsType": "blog",

src/views/About/Metrics.vue

@@ -305,7 +305,6 @@
                 <li>Arista Networks, Inc.</li>
                 <li>Asea Brown Boveri Ltd.</li>
                 <li>ASR Microelectronics Co., Ltd.</li>
-                <li>ASR Microelectronics Co., Ltd.</li>
                 <li>Autodesk</li>
                 <li>Automotive Security Research Group (ASRG)</li>
                 <li>Avaya Inc.</li>