10/7/25 release branch (#3719)

* #3715 Update graphic

* #3716 Update CVE Services page

* #3716 Update CVE Services page

* #3717 VulnCon 2026 updates

* #3718 CNA Enrichment Recognition List updates for 10/6/2025

* #3714 Add 1 new CNA + Move 1 CNA to Inactive status

* #3718  News article ID numbers

* #3718 Text updates

* Archives: add 8/20 & 9/3 board meeting summaries; handle summaries at marc.info

* HomePageSidebarModule: change news displayed to 4, events to 2; update to Vue 3 Composition

---------

Co-authored-by: Roy Lane <[email protected]>

Author: rroberge

public/images/news/VulnCon2026.png

@@ -20128,69 +20128,6 @@
     },
     "country": "USA"
   },
-  {
-    "shortName": "teleport",
-    "cnaID": "CNA-2024-0014",
-    "organizationName": "Teleport",
-    "scope": "All Teleport (Gravitational, Inc.) products (supported products and end-of-life/end-of-service products), as well as vulnerabilities in third-party software discovered by Teleport that are not in another CNA’s scope.",
-    "contact": [
-      {
-        "email": [],
-        "contact": [
-          {
-            "label": "Teleport HackerOne contact page",
-            "url": "https://hackerone.com/security"
-          }
-        ],
-        "form": []
-      }
-    ],
-    "disclosurePolicy": [
-      {
-        "label": "Teleport Disclosure Policy",
-        "language": "",
-        "url": "https://goteleport.com/security"
-      },
-      {
-        "label": "Teleport HackerOne Policy",
-        "language": "",
-        "url": "https://hackerone.com/teleport"
-      }
-    ],
-    "securityAdvisories": {
-      "alerts": [],
-      "advisories": [
-        {
-          "label": "Advisories",
-          "url": "https://github.com/gravitational/teleport/security/advisories"
-        }
-      ]
-    },
-    "resources": [],
-    "CNA": {
-      "isRoot": false,
-      "root": {
-        "shortName": "n/a",
-        "organizationName": "n/a"
-      },
-      "roles": [
-        {
-          "helpText": "",
-          "role": "CNA"
-        }
-      ],
-      "TLR": {
-        "shortName": "mitre",
-        "organizationName": "MITRE Corporation"
-      },
-      "type": [
-        "Vendor",
-        "Open Source",
-        "Researcher"
-      ]
-    },
-    "country": "USA"
-  },
   {
     "shortName": "BT",
     "cnaID": "CNA-2024-0015",
@@ -27390,5 +27327,61 @@
       ]
     },
     "country": "Italy"
+  },
+  {
+    "shortName": "XONA",
+    "cnaID": "CNA-2025-0053",
+    "organizationName": "Xona Systems",
+    "scope": "All software produced as part of the Xona Platform including the CSG (Critical System Gateway) and XCM (Xona Central Manager) and vulnerabilities discovered by or reported to Xona Systems for Xona software or its underlying Operating System or Firmware not covered by the scope of another CNA.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "[email protected]"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://www.xonasystems.com/product-security/"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://www.xonasystems.com/advisories/"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "icscert",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)"
+      },
+      "type": [
+        "Vendor"
+      ],
+      "TLR": {
+        "shortName": "CISA",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA)"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ]
+    },
+    "country": "USA"
   }
 ]

src/assets/data/CNAsList.json

@@ -1,5 +1,13 @@
 {
   "2025": [
+    {
+      "name": "September 3, 2025 - teleconference",
+      "path": "m=175890383805223&w=2"
+    },
+    {
+      "name": "August 20, 2025 - teleconference",
+      "path": "m=175866087004529&w=2"
+    },
     {
       "name": "July 23, 2025 - teleconference",
       "path": "msg00286.html"

src/assets/data/boardMeetings.json

@@ -1,8 +1,8 @@
 {
   "currentEvents": [
     {
-      "id": 40,
-      "displayOnHomepageOrder": 1,
+      "id": 41,
+      "displayOnHomepageOrder": 0,
       "title": "CVE Program Technical Workshop – Autumn 2025",
       "location": "Virtual",
       "description": "A collaborative virtual community event of CVE Partners focused on improving CVE.<br/><br/>Event Time: 10:00 AM to 2:00 PM EDT both days.<br/><br/>Please refer to the CNA partners email announcements for agenda topics and other workshop details.",
@@ -15,39 +15,39 @@
       }
     },
     {
-      "id": 39,
+      "id": 40,
       "title": "Consumer Working Group (CWG) Meeting",
       "location": "Virtual",
       "description": "CWG identifies consumer needs, evaluates the usability of CVE data, and recommends improvements to ensure that the CVE Program remains aligned with real-world use cases.<br/><br/>Meetings are held on select Thursdays, with alternating meeting times to enable worldwide participation:<br/><br/><strong>APAC/US Consumer WG at 7:00pm ET</strong><ul><li>October 2, 2025</li><li>October 23, 2025</li><li>November 13, 2025</li><li>December 4, 2025</li><li>December 25, 2025</li></ul><strong>EU/US Consumer WG at 11:00am ET</strong><ul><li>October 9, 2025</li><li>October 30, 2025</li><li>November 20, 2025</li><li>December 11, 2025</li></ul></li></ul>",
       "permission": "private",
       "url": "/ProgramOrganization/WorkingGroups#CVEConsumerWorkingGroupCWG",
       "date": {
         "start": "2025-09-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Thursday",
           "recurrence": "weekly"
         }
       }
     },
     {
-      "id": 38,
+      "id": 39,
       "title": "Researcher Working Group (RWG) Meeting",
       "location": "Virtual",
       "description": "Focused on giving voice to, and establishing working norms for, the extended community of designated Researcher CNAs. This includes providing guidance and advice to the research community, as well as other research community activities designed to promote the CVE Program.",
       "permission": "private",
       "url": "/ProgramOrganization/WorkingGroups#ResearcherWorkingGroupRWG",
       "date": {
         "start": "2025-07-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Tuesday",
           "recurrence": "weekly"
         }
       }
     },
     {
-      "id": 37,
+      "id": 38,
       "title": "CVE/FIRST VulnCon 2027",
       "location": "Scottsdale, Arizona, USA & Virtual",
       "description": "SAVE THE DATE!<br/><br/>VulnCon is co-hosted by the <a href='/'>CVE Program</a> and <a href='https://www.first.org/' target='_blank'>FIRST</a> and is open to the public.<br/><br/>The purpose of VulnCon is to collaborate with various vulnerability management and cybersecurity professionals to develop forward leaning ideas that can be taken back to individual programs for action to benefit the vulnerability management ecosystem.<br/><br/>A key goal of the conference is to understand what important stakeholders and programs are doing within the vulnerability management ecosystem and best determine how to benefit the ecosystem broadly.",
@@ -63,9 +63,9 @@
       "id": 37,
       "title": "CVE/FIRST VulnCon 2026",
       "location": "Scottsdale, Arizona, USA & Virtual",
-      "description": "SAVE THE DATE!<br/><br/>VulnCon is co-hosted by the <a href='/'>CVE Program</a> and <a href='https://www.first.org/' target='_blank'>FIRST</a> and is open to the public.<br/><br/>The purpose of VulnCon is to collaborate with various vulnerability management and cybersecurity professionals to develop forward leaning ideas that can be taken back to individual programs for action to benefit the vulnerability management ecosystem.<br/><br/>A key goal of the conference is to understand what important stakeholders and programs are doing within the vulnerability management ecosystem and best determine how to benefit the ecosystem broadly.",
+      "description": "EARLY REGISTRATION NOW OPEN!<br/><br/>VulnCon is co-hosted by the <a href='/'>CVE Program</a> and <a href='https://www.first.org/conference/vulncon26/' target='_blank'>FIRST</a> and is open to the public.<br/><br/><strong>Call for Papers</strong>:<br/>Opens on November 5, 2025.<br/><br/><strong>Early Registration</strong>:<br/>Both virtual and in-person early registration are now open on the VulnCon 2026 <a href='https://www.first.org/conference/vulncon26/registration#Registration-Information' target='_blank'>conference registration page</a> hosted on the FIRST website. <ul><li>Standard Admission (by March 14, 2026): US $525.00</li><li>Late Rate Admission (after March 14, 2026): US $600.00</li><li>Virtual Admission: US $100.00</li></ul>Registration fees include full admission to conference activities Monday through Thursday; continental breakfast, lunch, and two coffee breaks Tuesday through Thursday; entry to the Monday welcome reception; entry to the Tuesday networking reception; entry to the vendor hall; all applicable conference materials;, and access to live streams and applicable apps.</br></br>An After Party will be tentatively hosted off-site with tickets to be sold separately. More information to come. Tickets will cost US $30.00.<br/><br/>Discounted rates are not being offered for this event regardless of membership status. Sponsors and speakers should see the FIRST Events Office for their specific registration packages and instructions.<br/><br/><strong>Program Overview</strong>:<br/><br/>* <strong>Monday, April 13, 2026 | Pre-conference Day</strong><br/>09:00-17:30 - Various Workshops, International Coordinators Summit, Early Registration, Vendor Table Setup<br/>18:00-19:00 - Welcome Reception for Early Arrivals<br/><br/>* <strong>Tuesday, April 14, 2026 | Conference Opening Day</strong><br/>08:30-17:30 - Conference Sessions<br/>17:30-19:30 - Opening Reception with Vendors<br/><br/>* <strong>Wednesday, April 15, 2026 | Conference Day 2</strong><br/>09:00-17:30 - Conference Sessions, Vendor Move-out in the Afternoon<br/>19:00-21:00 - Tentative Off-site Social Event (separate ticket purchase required)<br/><br/>* <strong>Thursday, April 16, 2026 | Conference Day 3 and Close</strong><br/>09:00-15:00 - Conference Sessions<br/><br/><strong>Purpose:</strong><br/>The purpose of VulnCon is to collaborate with various vulnerability management and cybersecurity professionals to develop forward leaning ideas that can be taken back to individual programs for action to benefit the vulnerability management ecosystem.<br/><br/>A key goal of the conference is to understand what important stakeholders and programs are doing within the vulnerability management ecosystem and best determine how to benefit the ecosystem broadly.",
       "permission": "public",
-      "url": "https://www.first.org/events/",
+      "url": "https://www.first.org/conference/vulncon26/",
       "date": {
         "start": "2026-04-13",
         "end": "2026-04-16",
@@ -94,7 +94,7 @@
       "url": "/ProgramOrganization/WorkingGroups#CVEArtificialIntelligenceWorkingGroupCVEAIWG",
       "date": {
         "start": "2025-01-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Monday",
           "recurrence": "biweekly"
@@ -136,7 +136,7 @@
       "url": "/ProgramOrganization/WorkingGroups#VulnerabilityConferenceandEventsWorkingGroupVCEWG",
       "date": {
         "start": "2025-01-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "As Needed",
           "recurrence": ""
@@ -269,7 +269,7 @@
       "url": "/ProgramOrganization/WorkingGroups#TacticalWorkingGroupTWG",
       "date": {
         "start": "2025-01-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Thursday",
           "recurrence": "weekly"
@@ -470,7 +470,7 @@
       "url": "/ProgramOrganization/WorkingGroups#AutomationWorkingGroupAWG",
       "date": {
         "start": "2025-01-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Tuesday",
           "recurrence": "weekly"
@@ -486,7 +486,7 @@
       "url": "/ProgramOrganization/WorkingGroups#CNAOrganizationOfPeersCOOP",
       "date": {
         "start": "2025-01-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Wednesday",
           "recurrence": "biweekly"
@@ -518,7 +518,7 @@
       "url": "/ProgramOrganization/WorkingGroups#QualityWorkingGroupQWG",
       "date": {
         "start": "2025-01-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Thursday",
           "recurrence": "weekly"
@@ -534,7 +534,7 @@
       "url": "/ProgramOrganization/WorkingGroups#OutreachandCommunicationsWorkingGroupOCWG",
       "date": {
         "start": "2025-01-01",
-        "end": "2025-12-31",
+        "end": "ongoing",
         "repeat": {
           "day": "Friday",
           "recurrence": "biweekly"

src/assets/data/events.json

@@ -1208,7 +1208,7 @@
         },
         {
           "month": "October",
-          "value": "TBA"
+          "value": "1"
         },
         {
           "month": "November",