Did you know that DMTF has a Security Response Task Force (SRTF) within the organization’s Technical Committee (TC)? The Task Force, under the direction of the TC, is responsible for the coordination and management of reported security issues or vulnerabilities related to DMTF standards or DMTF open-source sample implementations.

Did you know vulnerabilities have already been reported?  Does your organization know about them? Did you know researchers are analyzing DMTF specifications and open source for flaws and vulnerabilities? DMTF has developed a security issue reporting system that will evaluate and address the reported concerns.

We have a repository dedicated to announcing all of the security issues addressed by the SRTF. This page includes the CVE ID for all the issues as well as links to the patches and changes. You will also find the vulnerabilities explained in great detail. Access to the security announcement repository is granted upon request of DMTF Administration with a corporate email address. For more information about the SRTF please visit the Security Issue Reporting Process page.

As always, please report any security issues or vulnerabilities via the Feedback Portal.