The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has been named a Top-Level Root CVE Numbering Authority (CNA) It will be overseeing CNAs in assigning CVE identifiers for vulnerabilities in industrial control systems (ICS) and medical devices. The CNAs managed by CISA are Alias Robotics, ABB, CERT@VDE, Johnson Controls, Bosch, Siemens and Gallagher Group. The work of CISA will enable the rapid identification and resolution of ICS and medical device vulnerabilities.”]
Source: https://securityaffairs.co/wordpress/108430/security/cisa-cve-numbering-authority.html