http://sei.cmu.edu/feeds/tag/Updates on changes and additions to the SEI Blog for posts matching CERT/CC Vulnerabilitiesen-usWed, 26 Mar 2025 00:00:00 -0400https://www.sei.cmu.edu/blog/the-essential-role-of-aisirt-in-flaw-and-vulnerability-management/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThe SEI established the first Artificial Intelligence Security Incident Response Team (AISIRT) in 2023. This post discusses the role of AISIRT in coordinating flaws and vulnerabilities in AI systems.Lauren McIlvenny, Vijay SarvepalliWed, 26 Mar 2025 00:00:00 -0400https://www.sei.cmu.edu/blog/the-essential-role-of-aisirt-in-flaw-and-vulnerability-management/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCERT/CC VulnerabilitiesCybersecurityAISIRThttps://www.sei.cmu.edu/blog/protecting-ai-from-the-outside-in-the-case-for-coordinated-vulnerability-disclosure/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis post highlights lessons learned from applying the coordinated vulnerability disclosure (CVD) process to reported vulnerabilities in AI and ML systems.Allen Householder, Vijay Sarvepalli, Jeff Havrilla, Matt Churilla, Lena Pons, Shing-hon Lau, Nathan VanHoudnos, Andrew Kompanek, Lauren McIlvennyMon, 24 Feb 2025 00:00:00 -0500https://www.sei.cmu.edu/blog/protecting-ai-from-the-outside-in-the-case-for-coordinated-vulnerability-disclosure/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCERT/CC VulnerabilitiesArtificial Intelligence EngineeringSecuring AIhttps://www.sei.cmu.edu/blog/vulnerabilities-everybodys-got-one/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesIn this post, Leigh Metcalf describes how she pulled data from the malvuln project to explore recent vulnerabilities in both malware and non-malware to study the differences.Leigh MetcalfWed, 16 Jun 2021 00:00:00 -0400https://www.sei.cmu.edu/blog/vulnerabilities-everybodys-got-one/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCERT/CC VulnerabilitiesVulnerability AnalysisMalware AnalysisMalwarehttps://www.sei.cmu.edu/blog/acm-digital-threats-research-and-practice/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCERT/CC is very excited to announce a new journal in collaboration with ACM called ACM Digital Threats, Research and Practice. The journal (DTRAP) is a peer-reviewed journal....Leigh MetcalfWed, 18 Apr 2018 00:00:00 -0400https://www.sei.cmu.edu/blog/acm-digital-threats-research-and-practice/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCERT/CC Vulnerabilitieshttps://www.sei.cmu.edu/blog/cvd-series-what-is-coordinated-vulnerability-disclosure-part-1-of-9/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesThis is the first post in a series about Coordinated Vulnerability Disclosure (CVD). In this series, we will discuss why CVD is an important part of the modern software development lifecycle, and how individuals and organizations can establish a CVD process.Garret WassermannTue, 27 Sep 2016 00:00:00 -0400https://www.sei.cmu.edu/blog/cvd-series-what-is-coordinated-vulnerability-disclosure-part-1-of-9/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesCERT/CC VulnerabilitiesVulnerability AnalysisSecurity VulnerabilitiesBest Practiceshttps://www.sei.cmu.edu/blog/the-report-network-profiling-using-flow-released/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesHi, this is Austin Whisnant of the CERT Network Situational Awareness Team (NetSA). After a long time in the making, NetSA has published an SEI technical report on how to inventory assets....Austin WhisnantWed, 05 Sep 2012 00:00:00 -0400https://www.sei.cmu.edu/blog/the-report-network-profiling-using-flow-released/?utm_source=blog&utm_medium=rss&utm_campaign=my_site_updatesSecurity VulnerabilitiesNetwork Situational AwarenessCERT/CC Vulnerabilities