Security · CNA

Security Advisories

The official, publicly accessible distribution point for security advisories to be issued by RedEye Security as it establishes its CVE Numbering Authority (CNA) program. This page is open to everyone — no registration, no login, no terms of use.

Disclosure policy Report a vulnerability

RedEye Security is establishing itself as a CVE Numbering Authority (CNA) under the MITRE Top-Level Root (TL-Root). Our CNA scope covers vulnerabilities in RedEye Security's own products: Caver, Caver Lighthouse, the RedEye ICS Exposure Scanner, and RedEye Intel Feeds. This page is independent of the token-gated RedEye Intel Feeds and is always free to read.

Advisory index

No advisories have been published yet.
RedEye Security's CNA program is being established. Advisories will be listed here, newest first, as they are issued — each mapped to a CVE ID and published at the same time the CVE record goes public.

How RedEye advisory IDs work

IdentifierFormatExampleIssued by
RedEye Advisory IDREDEYE-YYYY-NNNNREDEYE-2026-0001RedEye Security
CVE IDCVE-YYYY-NNNNNassigned at disclosureRedEye Security (as CNA)

Each RedEye advisory maps 1:1 to a CVE ID assigned by RedEye within our CNA scope. The authoritative CVE record is published to the CVE List via CVE Services; the per-advisory page here (/security/advisories/REDEYE-YYYY-NNNN) is the human-readable advisory and the canonical RedEye reference. Severity is reported as a CVSS v3.1 base score at time of publication.

RedEye Security · CVE Numbering Authority (CNA) program (MITRE TL-Root) — application in progress · [email protected] · security.txt