Regarding the Jura F90 Coffee maker hack: http://www.securityfocus.com/archive/1/493387 I'm tempted to include this in CVE, since physical damage can occur. (We used a similar rationale for an air-conditioning control system, CVE-2008-1546). If no - then where's the line between coffee makers, air conditioners, and SCADA products? - Steve