dotCMS has been authorized by the CVE Program as a CVE Numbering Authority (CNA)

Jan 10, 2023

dotCMS, a leading content management system, has been authorized by the CVE Program as a CVE Numbering Authority (CNA), starting in 2023.

The mission of the Common Vulnerabilities and Exposures (CVE®) Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities.

CVE is an international, shared effort that relies on over 260 community partners to discover vulnerabilities. The vulnerabilities are discovered, validated, prioritized then assigned and published to the CVE List. The CVE Records published in the catalog enable program stakeholders to rapidly discover and correlate vulnerability information used to protect systems against cybersecurity attacks. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue and coordinating their efforts to prioritize and address the vulnerabilities.

"Being a CNA member will greatly assist us in protecting dotCMS products with proactive protective measures against disclosed vulnerabilities,” said Dr. Mehdi Karimi, director of cybersecurity at dotCMS.This is a big achievement in our security disclosure program, where it enables us to systematically mitigate the risks of discovered vulnerabilities.”

About dotCMS

dotCMS is the most agile, scalable and secure content management system for enterprise. Built on leading Java technology, dotCMS is an open-source, hybrid-headless content management system that gives developers the flexibility of a headless CMS while equipping marketers with no-code visual content authoring.  Whether you're building a network of global websites, an employee intranet, customer portal, or single page web application, dotCMS helps you manage content, images, and assets in one centralized location and deliver them to any channel.

Founded in 2003, dotCMS is a privately held US company with a global network of certified development partners and an active open source community. dotCMS has generated millions of downloads and more than 100,000 implementations and integration projects worldwide. Notable customers include: Telus, Standard & Poors, Hospital Corporation of America, Royal Bank of Canada, Comcast, Thomson Reuters, Dairy Queen, City Furniture, Varo Bank, Lennox International, Firstmac and Newell Brands.