The National Institute of Standards and Technology is preparing to shift its role in the globally-adopted vulnerability ...

For the last 25 years since its inception, the CVE Program (Common Vulnerabilities and Exposures) continues to be the dominant way of referencing security vulnerabilities and an important cornerstone ...

The US Cybersecurity and Infrastructure Security Agency (CISA) announced on May 8 that it was starting a new software vulnerability enrichment program called ‘Vulnrichment.’ This comes almost three ...

In an 11th-hour reprieve, the US government last night agreed to continue funding the globally used Common Vulnerabilities and Exposures (CVE) program.… This comes after the Feds decided not to renew ...

In keeping with the current administration's pledge to skinny down government to its skeletal remains, the Cybersecurity and Infrastructure Security Agency (CISA) was reportedly prepared to let its ...

MITRE Vice President Yosry Barsoum has warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs expires today, which could ...

When news broke that funding for the Common Vulnerabilities and Exposures (CVE) database would expire on April 16, panic quickly spread through the infosec community. MITRE, the nonprofit that ...

The tumult triggered by news that MITRE funding to support the Common Vulnerabilities and Exposures (CVE) program was at risk has been a wake-up call for the security community. However, this evolving ...

The 25-year-old CVE program plays a huge role in vulnerability management. It is responsible overseeing the assignment and organizing of unique CVE ID numbers, such as CVE-2014-0160 and CVE-2017-5754, ...

A majority of currently exploited software vulnerabilities are missing from the US National Vulnerability Database (NVD), a new VulnCheck report has found. In the report published on May 23, the ...