The Industry Consortium for Advancement of Security on the Internet (ICASI) has introduced version 1.0 of its vulnerability reporting framework.

"What the organization has been working on is the Common Vulnerability Reporting Framework (CVRF), a free-to-use, XML-based reporting standard that promises to clean up the many different ways companies document, refer to and report on discovered software vulnerabilities across a multitude of product types," Network World's John E. Dunn writes.

"The idea is that instead of each vendor using its own report design, in the future they will adopt the CVRF, removing the time-consuming and potentially insecure chore of having to translate between incompatible reports, one into the other, many times over," Dunn writes.

Go to "Industry agrees on security vulnerability reporting format" to read the details.

For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.