#6 CVE Coordination on Lan Messanger product

[Spanish National CNA]

Dear lan messanger team,

We are writing to you from INCIBE (https://www.incibe.es), the National Institute of Cybersecurity of Spain, about a vulnerability reported by an external researcher in one of your products.

We participate in the CVE Program as a CNA Root (https://www.cve.org/ProgramOrganization/Structure) , which enables us to assign and publish CVE codes.

Note that this report is not about an incident, nobody is exploiting the vulnerability. Simply, from INCIBE we take care of managing the CVE report, documentation and publication, in coordination with the affected parties.

As established in our disclosure policy (https://www.incibe.es/en/incibe-cert/early-warning/vulnerabilities/cve-assignment-publication), we are going to make this vulnerability public by the first week of January
If you wish to include a solution or additional information for the reported issue in the advisory, please tell us before the due date.

Please find attached the vulnerability description.

Thank you very much and kind regards,

[Spanish National CNA]

Dear lanmanager Team.

This email is just a reminder that we are going to make the vulnerability public in 1 month.

If you ahve any solution for the proposed vulnerability,

Please let us know before due date.

Kind regards,

[Spanish National CNA]

Dear lanmanager Team.

This email is just a reminder that we are going to make the vulnerability public in 1 week.

If you have any solution for the proposed vulnerability,

Please let us know before due date.

Kind regards,