On the 24th June, Huawei openEuler became the CVE number distribution organization through the CNA admission procedure. The full name of CVE is Common Vulnerabilities & Exposures (General Vulnerabilities & Exposures). This is the most well-known vulnerability disclosure library in the security field.
Each vulnerability in a CVE has a unique CVE number, which can be used to quickly find the scope of the vulnerability and patch information in a vulnerability database or security tool.
The CNA (CVE Numbering Authority) is the organization that distributes CVE numbers and is comprised of vendors, the open-source project community, vulnerability researchers, and the National Computer Security Emergency Response Team.
Its primary function is to distribute and manage CVE numbers within the scope of its mandate. There are currently 129 organization members from 21 countries, including Adobe, Apple, Apache, Eclipse Foundation, Google, Kubernetes, PHP Group, etc. Domestic members include Alibaba, Huawei, Lenovo, OPPO, Qihoo 360, Vivo, Xiaomi, and ZTE, etc.