From b2659dcac15628a948faa00aa0d2f19f9548c8a7 Mon Sep 17 00:00:00 2001
From: rroberge <rroberge@mitre.org>
Date: Tue, 4 Feb 2025 14:58:35 +0000
Subject: [PATCH] #3433 Add 1 new CNA + Update  infor for 4 CNAs

---
 src/assets/data/CNAsList.json | 66 ++++++++++++++++++++++++++++++++---
 src/assets/data/metrics.json  |  2 +-
 src/assets/data/news.json     | 22 ++++++++++++
 3 files changed, 84 insertions(+), 6 deletions(-)

diff --git a/src/assets/data/CNAsList.json b/src/assets/data/CNAsList.json
index fb61ce39..42f21fc4 100644
--- a/src/assets/data/CNAsList.json
+++ b/src/assets/data/CNAsList.json
@@ -89,7 +89,7 @@
       "advisories": [
         {
           "label": "Advisories",
-          "url": "https://www.amd.com/en/resources/product-security.html#vulnerability"
+          "url": "https://www.amd.com/en/resources/product-security.html#security"
         }
       ]
     },
@@ -137,7 +137,7 @@
       {
         "label": "Policy",
         "language": "",
-        "url": "https://www.airbus.com/contact-us.html"
+        "url": "https://www.airbus.com/en/airbus-contact-us#:~:text=Vulnerability%20disclosure%20guidelines"
       }
     ],
     "securityAdvisories": {
@@ -15502,7 +15502,7 @@
       {
         "label": "Policy",
         "language": "",
-        "url": "https://hillstonenet.com.cn/support-and-training/psirt"
+        "url": "https://www.hillstonenet.com.cn/support-and-training/psirt"
       }
     ],
     "securityAdvisories": {
@@ -20282,7 +20282,7 @@
       {
         "label": "Policy",
         "language": "",
-        "url": "https://www.milestonesys.com/psirt"
+        "url": "https://doc.milestonesys.com/latest/en-US/portal/htm/chapter-page-cve-vulnerabilitymanagementpolicy.htm"
       }
     ],
     "securityAdvisories": {
@@ -20290,7 +20290,7 @@
       "advisories": [
         {
           "label": "Advisories",
-          "url": "https://www.milestonesys.com/support/help-and-documentation/cyber-security/recent-vulnerabilities/"
+          "url": "https://supportcommunity.milestonesys.com/s/knowledgebase?language=en_US"
         }
       ]
     },
@@ -25085,5 +25085,61 @@
       ]
     },
     "country": "USA"
+  },
+  {
+    "shortName": "HemoCue",
+    "cnaID": "CNA-2025-0004",
+    "organizationName": "HemoCue AB",
+    "scope": "HemoCue branded products and technologies only",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "productsecurity@hemocue.se"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://global.hemocue.com/product-security/"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://global.hemocue.com/product-security/"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "icscert",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS)"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "CISA",
+        "organizationName": "Cybersecurity and Infrastructure Security Agency (CISA)"
+      },
+      "type": [
+        "Vendor"
+      ]
+    },
+    "country": "Sweden"
   }
 ]
\ No newline at end of file
diff --git a/src/assets/data/metrics.json b/src/assets/data/metrics.json
index 451e98d3..2a95ca6e 100644
--- a/src/assets/data/metrics.json
+++ b/src/assets/data/metrics.json
@@ -1133,7 +1133,7 @@
         },
         {
           "month": "February",
-          "value": "TBA"
+          "value": "1"
         },
         {
           "month": "March",
diff --git a/src/assets/data/news.json b/src/assets/data/news.json
index 89cae6a3..5133b4fc 100644
--- a/src/assets/data/news.json
+++ b/src/assets/data/news.json
@@ -1,5 +1,26 @@
 {
   "currentNews": [
+    {
+      "id": 474,
+      "newsType": "news",
+      "title": "HemoCue Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "HemoCue Added as CNA",
+      "date": "2025-02-04",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/HemoCue'>HemoCue AB</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for HemoCue branded products and technologies only."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>436 CNAs</a> (434 CNAs and 2 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>40 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. HemoCue is the 7th CNA from Sweden."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "HemoCue’s Root is the <a href='/PartnerInformation/ListofPartners/partner/icscert'>Cybersecurity and Infrastructure Security Agency (CISA) Industrial Control Systems (ICS) Root</a>."
+        }
+      ]
+    },
     {
       "id": 473,
       "newsType": "blog",
@@ -106,6 +127,7 @@
     },
     {
       "id": 470,
+      "displayOnHomepageOrder": 1,
       "newsType": "blog",
       "title": "Guide for Including CPE Applicability Statements in CVE Records Now Available for CNAs",
       "urlKeywords": "Guide for Including CPE in CVE Records",