GovInfoSecurity

Feds Signal Shift in Vulnerability Oversight

The National Institute of Standards and Technology is preparing to shift its role in the globally-adopted vulnerability ...
Forbes

The World Still Needs A CVE Program

For the last 25 years since its inception, the CVE Program (Common Vulnerabilities and Exposures) continues to be the dominant way of referencing security vulnerabilities and an important cornerstone ...
Dark Reading

CVE Program Cuts Send the Cyber Sector Into Panic Mode

In keeping with the current administration's pledge to skinny down government to its skeletal remains, the Cybersecurity and Infrastructure Security Agency (CISA) was reportedly prepared to let its ...
Hosted on MSN

CVE program gets last-minute funding from CISA – and maybe a new home

In an 11th-hour reprieve, the US government last night agreed to continue funding the globally used Common Vulnerabilities and Exposures (CVE) program.… This comes after the Feds decided not to renew ...
Forbes

CIOs Face Unrealistic Expectations As CVE Program Faces Uncertainty

When news broke that funding for the Common Vulnerabilities and Exposures (CVE) database would expire on April 16, panic quickly spread through the infosec community. MITRE, the nonprofit that ...
Infosecurity-magazine.com

RSAC: CISA Launches Vulnrichment Program to Address NVD Challenges

The US Cybersecurity and Infrastructure Security Agency (CISA) announced on May 8 that it was starting a new software vulnerability enrichment program called ‘Vulnrichment.’ This comes almost three ...
Bleeping Computer

MITRE warns that funding for critical CVE program expires today

MITRE Vice President Yosry Barsoum has warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs expires today, which could ...
Hosted on MSN

Uncle Sam kills funding for CVE program. Yes, that CVE

The 25-year-old CVE program plays a huge role in vulnerability management. It is responsible overseeing the assignment and organizing of unique CVE ID numbers, such as CVE-2014-0160 and CVE-2017-5754, ...
Dark Reading

CVE Uncertainty Underlines Importance of Cyber Resilience

The tumult triggered by news that MITRE funding to support the Common Vulnerabilities and Exposures (CVE) program was at risk has been a wake-up call for the security community. However, this evolving ...
TechRepublic

European Vulnerability Database is Live: What This ‘Essential Tool’ Offers Security Experts

European Vulnerability Database is Live: What This ‘Essential Tool’ Offers Security Experts Your email has been sent The announcement comes after concerns that the US government would stop funding the ...
Infosecurity-magazine.com

NVD Leaves Exploited Vulnerabilities Unchecked

A majority of currently exploited software vulnerabilities are missing from the US National Vulnerability Database (NVD), a new VulnCheck report has found. In the report published on May 23, the ...