Researchers and PSIRTs Working Well Together Artwork

We Speak CVE

A free podcast about cybersecurity, vulnerability management, and the CVE Program.

We Speak CVE

Researchers and PSIRTs Working Well Together

May 03, 2022 • CVE Program • Episode 13

Shannon Sabens of CrowdStrike and Milind Kulkarni of a NVIDIA discuss what security researchers should expect when reporting vulnerabilities to a Product Security Incident Response Team (PSIRT); how to best to collaborate with them; how to interpret responses from the PSIRT; how to get the best outcome when making a report; supported versus end-of-life (EOL) products; CVE Numbering Authority (CNA) scopes; timing of a patch versus the publication of a CVE Record; and more.