Authorized as a CVE Numbering Authority for security vulnerabilities~Enabling the speedy provision of safe and secure products and services~

• October 24, 2024

OMRON Corporation (HQ: Shimogyo-Ku, Kyoto. President and CEO: Junta Tsujinaga) announced today that it has been authorized as a CVE*¹ Numbering Authority (CNA), capable of in-house numbering of vulnerability identifiers (CVE IDs*²), under the CVE Program, an international initiative regarding security vulnerabilities.

Until now, OMRON has responded to the security of its products and services by defining a product security policy and establishing a system in cooperation with the head office and each business division.

In response to vulnerability information about products and services, OMRON has organized a dedicated team called OMRON PSIRT*³ to widely collect vulnerability information through the establishment of a dedicated contact point and collaboration with external organizations and has been swiftly taking measures to address vulnerabilities that are discovered.

With this CNA authorization, OMRON will be able to more quickly disclose information about vulnerabilities that affect its products and services, instead of requesting the CVE ID numbering process from an external party.

OMRON will continue to strive to reduce the risk of vulnerabilities in its products and services, and by disclosing any vulnerabilities discovered in a timely manner, will strive to provide products and services that customers can trust and feel secure about.

*¹ CVE: Common Vulnerabilities and Exposures

*² CVE-ID: Unique identification numbers assigned to vulnerabilities that exist in the software and hardware of individual products, which enable cross-referencing and association with information published by other organizations. CVE supports the foundation of security measures.

*³ PSIRT: Product Security Incident Response Team
Refers to an organization or team that responds to security incidents related to products and services.

Product security policy
https://www.omron.com/global/en/inquiry/product_security/

OMRON Product Security Incident Response Team
https://www.omron.com/contact/ContactForm.do?FID=00282

Vulnerability Information
https://www.omron.com/global/en/inquiry/vulnerability_information/

About OMRON Corporation
OMRON Corporation is a leading automation company with its core competencies in Sensing & Control + Think technology, and is engaged in a wide range of businesses including industrial automation, healthcare, social systems, device & module solutions. The company transcends the value creation by leveraging diverse data acquired through these businesses and linking it to the data solutions business.
Established in 1933, OMRON has about 28,000 employees worldwide, working to provide products and services in more than 130 countries, contributing to the creation of a better society.
For more information, please visit https://www.omron.com/global/en/