Imagination’s cybersecurity credentials have recently been strengthened by becoming a CVE Numbering Authority (CNA) within the Common Vulnerabilities and Exposures (CVE) Program.
Cybersecurity vulnerabilities are a reality of technology development. Responsible vendors have processes in place throughout the product lifecycle, from development to mass market shipping, to minimise the volume and impact of such vulnerabilities.
The CVE Program is a collaborative initiative that allows authorised partners from around the world to identify, define and catalogue cybersecurity vulnerabilities within one publicly available database. This single point of information helps the global technology ecosystem communicate more easily around vulnerabilities, removing any potential confusion about which issue is under discussion.
“Within Imagination, we commit to the highest standards of product security and foster a culture of transparency and collaboration,” says Tim Mamtora, Chief of Innovation and Engineering. “Our engineering teams work closely with customers, partners, security researchers and the wider technology community to handle vulnerabilities in a responsible manner, build trust and contribute to the advancement of global cybersecurity standards.”
Becoming an authorised CNA demonstrates our commitment to cybersecurity and highlights the maturity of our vulnerability management practices. For our customers and partners, it will streamline our vulnerability disclosure process, ease communication and reduce the time required to mitigate issues.
For more information on Imagination’s cybersecurity and vulnerability reporting policy visit the Imagination website.