Yogesh Mittal of Red Hat Joins CVE Board

The CVE Program is pleased to welcome Yogesh Mittal of Red Hat as the newest member of the CVE Board. Yogesh brings nearly 20 years of experience to the CVE Board, offering a unique perspective that bridges the gap between enterprise vulnerability consumers and open-source suppliers.

About Yogesh

Yogesh is the Manager of Red Hat Product Security. In this role, he manages a global team responsible for executing end-to-end Product Security Incident Response Team (PSIRT) operations for Red Hat's extensive enterprise portfolio as well as upstream community projects.

Having joined Red Hat in 2020, his role highlights the structural challenges and burnout experienced by unfunded open-source maintainers, while his broader industry background exposed him to the "triage drain" enterprise security teams face when chasing down vulnerabilities.

Yogesh has made significant contributions to the CVE Program over the years, including spearheading the strategic initiative for Red Hat to become a CVE Program Root, overseeing the successful onboarding of over 17+ CVE Numbering Authorities (CNAs) under the Red Hat Root, and leading the effort for the Red Hat Root to achieve the CNA of Last Resort (CNA-LR) designation for its Root hierarchy. Yogesh also represents the Red Hat Root on the Council of Roots (CoR), bringing a vital open-source perspective to the group.

About the CVE Board

Through open and collaborative discussions, the CVE Board helps ensure that the CVE Program meets the vulnerability identification needs of the global cybersecurity and technology communities. Board members represent numerous cybersecurity-related organizations, including commercial security tool vendors, academia, research institutions, government departments and agencies, and other prominent security experts, as well as end-users of vulnerability information.