It would be useful to have the partner/CNA list in some structured format, like a JSON file with a basic schema.
$ jq .[302] cnas.json
{
"shortName": "Google_Devices",
"cnaID": "CNA-2023-0040",
"organizationName": "Google Devices",
"scope": "Google Devices - Pixel, Nest, and Chromecast",
"contact": [
{
"email": [
{
"label": "Email",
"emailAddr": "dsap-vuln-management@google.com"
}
],
"contact": [],
"form": []
}
],
"disclosurePolicy": [
{
"label": "Policy",
"language": "",
"url": "https://support.google.com/product-documentation/answer/13658251?hl=en&ref_topic=12974021&sjid=11464995960873540884-NA"
}
],
"securityAdvisories": {
"alerts": [],
"advisories": [
{
"label": "Nest Advisories",
"url": "https://support.google.com/product-documentation/topic/12974021?hl=en&ref_topic=10123615&sjid=5419128013624043298-NA"
},
{
"label": "Pixel Advisories",
"url": "https://source.android.com/docs/security/bulletin/pixel"
},
{
"label": "Chromecast Advisories",
"url": "https://source.android.com/docs/security/bulletin/chromecast"
}
]
},
"resources": [],
"CNA": {
"isRoot": false,
"root": {
"shortName": "Google",
"organizationName": "Google LLC"
},
"type": [
"Vendor"
],
"TLR": {
"shortName": "mitre",
"organizationName": "MITRE Corporation"
},
"roles": [
{
"helpText": "",
"role": "CNA"
}
]
},
"country": "USA"
}
It would be useful to have the partner/CNA list in some structured format, like a JSON file with a basic schema.
It is possible to obtain the full list by vistiing https://www.cve.org/PartnerInformation/ListofPartners and clicking the Show: All dropdown. The CNA list is already JSON in a .js resource on the Partners page. Will need to handle some single quote escaping. Hacked up example: