CRA Cockpit EU Cyber Resilience Act readiness
Art. 14 reporting Full application

Your portfolio, ready for the CRA

Add each product once — CRA Cockpit works out its class under Regulation (EU) 2024/2847, the 11 September 2026 reporting sprint, and a full plan through December 2027. Runs entirely in your browser — no account, nothing is uploaded.

Next deadline

days until mandatory 24-hour reporting
of actively exploited vulnerabilities
  1. 10 Dec 2024CRA entered into force
  2. 11 Jun 2026Notified-body provisions apply
  3. 11 Sep 2026Article 14: 24-hour reporting of actively exploited vulnerabilities & severe incidents
  4. 11 Dec 2027Full application: security-by-design, SBOM, CE marking, support period

Portfolio by CRA class

    Products