CVE's
CVE's. Gamified? Maybe. Useful? Maybe. Fast-becoming-too-complex to manage? I think so.
But. This is currently one of the best ways of unified reporting & alerting of vulnerabilities to a wide audience. There's certainly room for improvement.
Recently, I got an inside view on the process.
My current ${DAY_JOB} is heavily