The CVE Researcher Working Group (RWG) was established in July 2025 and seeks to explore and advocate for researcher and bug bounty CNA perspectives on CVE issuance and vulnerability disclosure. The inaugural working group is comprised of established researcher CNAs with long-term, varied experience researching and disclosing vulnerabilities in a wide range of technologies. We are actively seeking additional participation and insight from researcher and bug bounty CNAs with unique viewpoints on CVEs, CVD, and vulnerability risk management. You can read the RWG charter here.
The July 2025 announcement about the RWG is here.
As of 2026, RWG meetings are held weekly every other Tuesday at 2 PM U.S. Eastern Time. We would gladly add an additional meeting to allow for EMEA and APAC engagement if there's interest. Researcher and bug bounty CNAs in good standing can request to join the RWG here.