IQSIGHT has been appointed as a Common Vulnerability and Exposures (CVE) Numbering Authority (CNA), strengthening its commitment to cybersecurity transparency and proactive vulnerability management.
The designation enables IQSIGHT to issue unique, standardized CVE records for vulnerabilities discovered in its software and firmware, helping customers receive timely information about potential security risks and mitigation measures.
New Authority Streamlines Vulnerability Reporting
Previously, CVE assignments related to IQSIGHT products were managed through the Bosch Product Security Incident Response Team. With its new CNA status, IQSIGHT can now directly manage the process of identifying, assigning, and publishing vulnerability information.
The designation will streamline the publication of critical security advisories to both the U.S. National Vulnerability Database (NVD) and the European Union Vulnerability Database (EUVD).
The appointment reflects the company’s ongoing efforts to strengthen vulnerability management and incident response processes while enhancing the security and resilience of its products.
Supporting Customer Trust Through Transparency
Thomas Elsässer, Vice President of Research and Development at IQSIGHT, said:
“Becoming a CVE Numbering Authority is a significant step in our mission to provide intelligence-first video security that leaders can trust. By managing our own CVE assignments, we are ensuring customers receive timely information about potential security risks along with the appropriate mitigation strategies.”
IQSIGHT has been onboarded as a CNA under the European Union Agency for Cybersecurity (ENISA), which serves as the company’s Root CNA.
Preparing For Evolving Cybersecurity Requirements
As cybersecurity regulations continue to evolve worldwide, IQSIGHT is focused on meeting and exceeding compliance requirements, including the European Union’s Cyber Resilience Act.
By establishing direct CVE management capabilities, the company is positioning itself to address future regulatory obligations while continuing to prioritize cybersecurity, transparency, and user data protection.
The move further supports IQSIGHT’s strategy of delivering secure and resilient video security solutions that help organizations protect critical assets and operations.
IQSIGHT, formerly Bosch Video Systems, brings more than 60 years of engineering expertise to the video security industry. The company delivers intelligence-first video security solutions that help organizations gain real-time situational awareness and make informed decisions faster. Its portfolio includes NDAA- and TAA-compliant solutions such as FLEXIDOME, AUTODOME, and MIC cameras.
Internal Links URLs
https://security.world/
External Links URLs
https://www.iqsight.com
Frequently Asked Questions (FAQs)
1. What is a CVE Numbering Authority (CNA)?
A CVE Numbering Authority is an organization authorized to assign and publish official CVE identifiers for cybersecurity vulnerabilities within its products or areas of responsibility.
2. What does IQSIGHT’s CNA designation mean?
The designation allows IQSIGHT to directly assign CVE identifiers and publish vulnerability information for its software and firmware products.
3. Why is this important for customers?
Customers receive faster and more transparent communication about security vulnerabilities, associated risks, and recommended mitigation measures.
4. Which organization serves as IQSIGHT’s Root CNA?
IQSIGHT has been onboarded under the European Union Agency for Cybersecurity (ENISA), which serves as its Root CNA.
5. How does this support regulatory compliance?
The capability helps IQSIGHT align with evolving cybersecurity regulations, including the European Union’s Cyber Resilience Act, by strengthening vulnerability disclosure and incident management processes.
Source: iqsight.com