2/17/26 release branch (#3850)

* #3846 Add 1 new CNA + Update 2 CNA's info

* #3848 Update CVE Services status to v2.6.1

* #3849 Update CVE Record timestamp maintenance blog

* #3846 Add 1 additional new CNA

* news: change news id (630)

---------

Co-authored-by: Roy Lane <rlane@mitre.org>

Author: rroberge

src/assets/data/CNAsList.json

@@ -7319,7 +7319,7 @@
     "shortName": "schneider",
     "cnaID": "CNA-2017-0009",
     "organizationName": "Schneider Electric",
-    "scope": "All Schneider Electric products, including Proface, APC, and Eurotherm.",
+    "scope": "All Schneider Electric products, including Proface, APC, and ProLeiT.",
     "contact": [
       {
         "email": [
@@ -11527,21 +11527,21 @@
     "CNA": {
       "isRoot": false,
       "root": {
-        "shortName": "n/a",
-        "organizationName": "n/a"
+        "shortName": "ENISA",
+        "organizationName": "EU Agency for Cybersecurity (ENISA)"
       },
-      "roles": [
-        {
-          "helpText": "",
-          "role": "CNA"
-        }
+      "type": [
+        "Researcher"
       ],
       "TLR": {
         "shortName": "mitre",
         "organizationName": "MITRE Corporation"
       },
-      "type": [
-        "Researcher"
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
       ]
     },
     "country": "Netherlands"
@@ -28301,5 +28301,118 @@
       ]
     },
     "country": "Australia"
+  },
+  {
+    "shortName": "DTEX",
+    "cnaID": "CNA-2026-0009",
+    "organizationName": "DTEX Systems, Inc.",
+    "scope": "All DTEX products, including DTEX Forwarder for Mac, DTEX Forwarder for Linux, DTEX Forwarder for Windows, and DTEX platform including DTEX Analytics Server.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "vulnerability-disclosure@dtexsystems.com"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://advisories.dtexsystems.com/vulnerability-disclosure-policy.pdf"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://advisories.dtexsystems.com"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "n/a",
+        "organizationName": "n/a"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "type": [
+        "Vendor",
+        "Hosted Service"
+      ]
+    },
+    "country": "USA"
+  },
+  {
+    "shortName": "Vestel",
+    "cnaID": "CNA-2026-0010",
+    "organizationName": "Vestel Electronics Industry & Trade Co.",
+    "scope": "Vestel-owned brands and products only.",
+    "contact": [
+      {
+        "email": [
+          {
+            "label": "Email",
+            "emailAddr": "psirt@vestel.com.tr"
+          }
+        ],
+        "contact": [],
+        "form": []
+      }
+    ],
+    "disclosurePolicy": [
+      {
+        "label": "Policy",
+        "language": "",
+        "url": "https://vestelinternational.com/en/vulnerability-disclose-policy"
+      }
+    ],
+    "securityAdvisories": {
+      "alerts": [],
+      "advisories": [
+        {
+          "label": "Advisories",
+          "url": "https://vestelinternational.com/security-advisories"
+        }
+      ]
+    },
+    "resources": [],
+    "CNA": {
+      "isRoot": false,
+      "root": {
+        "shortName": "n/a",
+        "organizationName": "n/a"
+      },
+      "roles": [
+        {
+          "helpText": "",
+          "role": "CNA"
+        }
+      ],
+      "TLR": {
+        "shortName": "mitre",
+        "organizationName": "MITRE Corporation"
+      },
+      "type": [
+        "Vendor"
+      ]
+    },
+    "country": "Türkiye"
   }
 ]

src/assets/data/metrics.json

@@ -1176,7 +1176,7 @@
         },
         {
           "month": "February",
-          "value": "2"
+          "value": "4"
         },
         {
           "month": "March",

src/assets/data/news.json

@@ -1,10 +1,73 @@
 {
   "currentNews": [
+    {
+      "id": 631,
+      "newsType": "news",
+      "title": "Vestel Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "Vestel Added as CNA",
+      "date": "2026-02-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/Vestel'>Vestel Electronics Industry & Trade Co.</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for Vestel-owned brands and products only."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>494 CNAs</a> (491 CNAs and 3 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>41 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. Vestel is the 4th CNA from Türkiye."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "Vestel’s Root is the <a href='/PartnerInformation/ListofPartners/partner/mitre'>MITRE TL-Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 630,
+      "newsType": "news",
+      "title": "DTEX Added as CVE Numbering Authority (CNA)",
+      "urlKeywords": "DTEX Added as CNA",
+      "date": "2026-02-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "<a href='/PartnerInformation/ListofPartners/partner/DTEX'>DTEX Systems, Inc.</a> is now a <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCNA'>CVE Numbering Authority (CNA)</a> for all DTEX products, including DTEX Forwarder for Mac, DTEX Forwarder for Linux, DTEX Forwarder for Windows, and DTEX platform including DTEX Analytics Server."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "To date, <a href='/PartnerInformation/ListofPartners'>493 CNAs</a> (490 CNAs and 3 CNA-LRs) from <a href='/ProgramOrganization/CNAs'>41 countries</a> and 1 no country affiliation have partnered with the CVE Program. CNAs are organizations from around the world that are authorized to assign <a href='/ResourcesSupport/Glossary?activeTerm=glossaryCVEID'>CVE Identifiers (CVE IDs)</a> and publish <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> for vulnerabilities affecting products within their distinct, agreed-upon scope, for inclusion in first-time public announcements of new vulnerabilities. DTEX is the 265th CNA from USA."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "DTEX’s Root is the <a href='/PartnerInformation/ListofPartners/partner/mitre'>MITRE TL-Root</a>."
+        }
+      ]
+    },
+    {
+      "id": 629,
+      "newsType": "news",
+      "title": "MegaZone Reelected as CNA Liaison Board Member",
+      "urlKeywords": "MegaZone Reelected CNA Liaison Board Member",
+      "date": "2026-02-17",
+      "description": [
+        {
+          "contentnewsType": "paragraph",
+          "content": "The <a href='/'>CVE Program</a> is pleased to announce that MegaZone of <a href='https://www.f5.com' target='_blank'>F5, Inc.</a>, received the majority of votes from CNAs and was reelected as the <a href='/ProgramOrganization/CNAs'>CVE Numbering Authority (CNA)</a> Liaison to the <a href='/ProgramOrganization/Board'>CVE Board</a> for another one-year term."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "Per the <a href='/Resources/Roles/Board/General/Board-Charter.pdf' target='_blank'>CVE Board Charter</a>, “Section 1.3.2 CNA Liaison &ndash; A single seat on the Board is reserved for a CNA Liaison who represents the CNA community, and ensures CNAs are updated with various status and activity-related information. The liaison is a voting member of the Board, with a one-year term, and can serve more than one consecutive term if the CNA community desires. This position is a two-way conduit for CNAs to bring things to and from the Board in a more official and structured way.”"
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "The CVE Board is the organization responsible for the strategic direction, governance, operational structure, policies, and rules of the CVE Program. The Board includes members from numerous cybersecurity-related organizations including commercial security tool vendors, academia, research institutions, government departments and agencies, and other prominent security experts, as well as end-users of vulnerability information."
+        }
+      ]
+    },
     {
       "id": 628,
       "displayOnHomepageOrder": 1,
       "newsType": "blog",
-      "title": "NOTICE: Date/Time Normalization Maintenance of Historical CVE Records to Occur February 16&ndash;25, 2026",
+      "title": "NOTICE: Date/Time Normalization Maintenance of Historical CVE Records to Occur February 16&ndash;26 (UPDATED: February 17, 2026)",
       "urlKeywords": "Historic CVE Record Date Time Maintenance February",
       "date": "2026-02-10",
       "author": {
@@ -19,19 +82,23 @@
       "description": [
         {
           "contentnewsType": "paragraph",
-          "content": "The <a href='/'>CVE&trade; Program</a> will normalize the formatting of date/time fields across historical <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> from February 16, 2026, through February 25, 2026. As <a href='/Media/News/item/blog/2026/01/06/Historic-CVE-Record-Date-Time-Fields-Normalized'>initially announced on January 6, 2026</a>, this maintenance will update older CVE Records so their date/time values use the same standardized ISO 8601 UTC format already in place for records published or updated since February 2025: <ul style=list-style-type:none;><li><strong>yyyy-MM-ddTHH:mm:ss.sssZ (ISO-8601, UTC)</strong></li></ul>For example: <strong>2025-07-11T19:32:03.983Z</strong>"
+          "content": "The <a href='/'>CVE&trade; Program</a> will normalize the formatting of date/time fields across historical <a href='/ResourcesSupport/Glossary?activeTerm=glossaryRecord'>CVE Records</a> from February 16, 2026, through February 26, 2026. As <a href='/Media/News/item/blog/2026/01/06/Historic-CVE-Record-Date-Time-Fields-Normalized'>initially announced on January 6, 2026</a>, this maintenance will update older CVE Records so their date/time values use the same standardized ISO 8601 UTC format already in place for records published or updated since February 2025: <ul style=list-style-type:none;><li><strong>yyyy-MM-ddTHH:mm:ss.sssZ (ISO-8601, UTC)</strong></li></ul>For example: <strong>2025-07-11T19:32:03.983Z</strong><br/<br/><br/><i>NOTE: This article was revised on February 17, 2026, to add an additional day of processing to this CVE List maintenance schedule to address potential inconsistencies identified during the first day, February 16, 2026.</i>"
         },
         {
           "contentnewsType": "paragraph",
           "content": "<h3>Maintenance Window and Dates</h3>"
         },
         {
           "contentnewsType": "paragraph",
-          "content": "The normalization activity will run in defined daily windows and will proceed in stages based on the publication year of the CVE Records in the following dates and year ranges:"
+          "content": "The normalization activity will run in defined daily windows and will proceed in stages based on the publication year of the CVE Records in the following dates and year ranges."
+        },
+        {
+          "contentnewsType": "paragraph",
+          "content": "<ul><li>Monday, February 16 &ndash; CVE Records published from 1999–2007</li><li>Tuesday, February 17 &ndash; CVE Records published from 2008–2012</li><li>Wednesday, February 18 &ndash; CVE Records published from 2013–2015</li><li>Thursday, February 19 &ndash; CVE Records published from 2016–2017</li><li>Friday, February 20 &ndash; CVE Records published from 2018–2019 (Part 1)</li><li>Monday, February 23 &ndash; CVE Records published from 2019 (Part 2)–2020</li><li>Tuesday, February 24 &ndash; CVE Records published from 2021–2022 (Part 1)</li><li>Wednesday, February 25 &ndash; CVE Records published from 2022 (Part 2)–2026</li><li>Thursday, February 26 &ndash; Quality Control Review/Modification 1999-2007<sup>*</sup></li></ul>"
         },
         {
           "contentnewsType": "paragraph",
-          "content": "<ul><li>Monday, February 16 &ndash; CVE Records published from 1999–2007</li><li>Tuesday, February 17 &ndash; CVE Records published from 2008–2012</li><li>Wednesday, February 18 &ndash; CVE Records published from 2013–2015</li><li>Thursday, February 19 &ndash; CVE Records published from 2016–2017</li><li>Friday, February 20 &ndash; CVE Records published from 2018–2019 (Part 1)</li><li>Monday, February 23 &ndash; CVE Records published from 2019 (Part 2)–2020</li><li>Tuesday, February 24 &ndash; CVE Records published from 2021–2022 (Part 1)</li><li>Wednesday, February 25 &ndash; CVE Records published from 2022 (Part 2)–2026</li></ul>"
+          "content": "<i>* An additional day of processing has been added to address potential inconsistencies identified during the first day (i.e., February 16, 2026) of the maintenance activity.</i>"
         },
         {
           "contentnewsType": "paragraph",
@@ -59,7 +126,7 @@
         },
         {
           "contentnewsType": "paragraph",
-          "content": "To help the community track progress and plan accordingly, the CVE Program will post on social media at the start and end of each maintenance window every day from February 16 through 20, and February 23 through 25."
+          "content": "To help the community track progress and plan accordingly, the CVE Program will post on social media at the start and end of each maintenance window every day from February 16 through 20, and February 23 through 26."
         },
         {
           "contentnewsType": "paragraph",

src/views/ResourcesSupport/AllResources/CveServices.vue

@@ -51,8 +51,8 @@
                   (view <a href="https://github.com/CVEProject/cve-schema/releases/tag/v5.2.0" target="_blank">release notes</a>)
                 </li>
                 <li>
-                  <a href="https://github.com/CVEProject/cve-services/releases/tag/v2.6.0" target="_blank">CVE Services 2.6.0</a>
-                  (view <a href="https://github.com/CVEProject/cve-services/releases/tag/v2.6.0" target="_blank">release notes</a>)
+                  <a href="https://github.com/CVEProject/cve-services/releases/tag/v2.6.1" target="_blank">CVE Services 2.6.1</a>
+                  (view <a href="https://github.com/CVEProject/cve-services/releases/tag/v2.6.1" target="_blank">release notes</a>)
                 </li>
               </ul>
             <h4 class="title">Known Issues</h4>