search menu icon-carat-right cmu-wordmark

Posts by Garret Wassermann

How to Win Friends and Coordinate a Vulnerability

How to Win Friends and Coordinate a Vulnerability

• Blog
Garret Wassermann

The CERT/CC Vulnerability Analysis team for nearly 30 years now has provided assistance for coordinated vulnerability disclosure (CVD). In a nutshell, we help security researchers communicate with software vendors to resolve security issues, and we get that information in the hands of anyone affected by the vulnerability. The CVD process can be confusing. To help researchers and vendors who are new to CVD, we're announcing a couple of simple but important additions to our CVD...

Read More
Reach Out and Mail Someone

Reach Out and Mail Someone

• Blog
Garret Wassermann

Every day, we receive reports from various security professionals, researchers, hobbyists, and even software vendors regarding interesting vulnerabilities that they discovered in software. Vulnerability coordination--where we serve as intermediary between researcher and vendor to share information, get vulnerabilities fixed, and get those fixes out in the public eye--is a free service we provide to the world....

Read More

Contact the Author

Garret Wassermann

SEI Digital Library

SEI Publications

Visit the SEI Digital Library to see other publications by Garret Wassermann

View publications