Hacker News new | ask | show | jobs
by fulafel 306 days ago
Not exactly.

There are several CVE numbering authorities and some of them (including the original MITRE, national CERTs etc), accept submissions from anyone, but there's evaluation and screening. Since Microsoft is their own CNA, most of them probably wouldn't issue a MS CVE without some kind of exceptional reason.
1 comments
jayofdoom 305 days ago
Makes sense. I was wondering if that would be an issue. Thanks for the detail.
link