Open Source Security FundingOss Item

Canva becomes a CVE Numbering Authority

April 3, 2026CVE Announcements

CVE Announcements says Canva is now a CNA that can assign CVE IDs for Canva products, Canva-maintained open-source software, and certain third-party vulnerabilities it discovers, expanding vulnerability disclosure capacity.

Open in PulseSee the full expert discussion →

QUOTES

Canva is now a CVE Numbering Authority (CNA) assigning CVE IDs for all Canva products, open-source software published & maintained by Canva, & 3rd-party vulnerabilities it discovers not in another CNA’s scope

VOICES

CVE Announcements

RELATED TERMS

cveopen sourcecveopen source

OTHER FINDINGS IN OPEN SOURCE SECURITY FUNDING

TeamPCP multi-ecosystem supply chain campaign and mitigations Telnyx Python SDK backdoor (PyPI) stealing credentials Open source complacency about auditing and real vulnerability report floods

AMYGDALA PULSE

See what experts are saying right now

This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.

Open Cyber Security Pulse Browse all topics

← Back to Cyber Security