WatchGuard has been authorized by the CVE Program as a Certified Numbering Authority (CNA). As a CNA, WatchGuard can now assign Common Vulnerability Exposure (CVE) IDs and publish CVE records for product security disclosures discovered internally and by external researchers. Information technology and cybersecurity professionals use CVE Records to ensure they are discussing the same issue, and to coordinate their efforts to prioritize and address the vulnerabilities.
At WatchGuard, we take product security seriously and welcome working through responsible disclosure with external researchers. By completing the process of becoming a CNA, we can streamline our disclosure process and ultimately, better protect our customers.
Information for submitting WatchGuard product security disclosures, and details for contacting the WatchGuard Product Security Incident Response Team (PSIRT) are available at psirt.watchguard.com.