Forbes

The World Still Needs A CVE Program

For the last 25 years since its inception, the CVE Program (Common Vulnerabilities and Exposures) continues to be the dominant way of referencing security vulnerabilities and an important cornerstone ...
Forbes

CIOs Face Unrealistic Expectations As CVE Program Faces Uncertainty

When news broke that funding for the Common Vulnerabilities and Exposures (CVE) database would expire on April 16, panic quickly spread through the infosec community. MITRE, the nonprofit that ...
Dark Reading

CVE Program Cuts Send the Cyber Sector Into Panic Mode

In keeping with the current administration's pledge to skinny down government to its skeletal remains, the Cybersecurity and Infrastructure Security Agency (CISA) was reportedly prepared to let its ...
Hosted on MSN

CVE program gets last-minute funding from CISA – and maybe a new home

In an 11th-hour reprieve, the US government last night agreed to continue funding the globally used Common Vulnerabilities and Exposures (CVE) program.… This comes after the Feds decided not to renew ...
Bleeping Computer

MITRE warns that funding for critical CVE program expires today

MITRE Vice President Yosry Barsoum has warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs expires today, which could ...
Hosted on MSN

Uncle Sam kills funding for CVE program. Yes, that CVE program

The 25-year-old CVE program plays a huge role in vulnerability management. It is responsible overseeing the assignment and organizing of unique CVE ID numbers, such as CVE-2014-0160 and CVE-2017-5754, ...
CSOonline

Beyond CVE: The hunt for other sources of vulnerability intel

Were the CVE program to be discontinued, security teams would have a hard time finding one resource that would function with the same impact across the board. Here are current issues of relying on CVE ...
Business Wire

Ribose authorized as CVE Numbering Authority (CNA) by the CVE Program

LONDON--(BUSINESS WIRE)--Ribose has been authorized by the Common Vulnerabilities and Exposures (CVE ®) Program as a CVE Numbering Authority (CNA), allowing it to publish authoritative cybersecurity ...
CSOonline

New EU vulnerability database will complement CVE program, not compete with it, says ENISA

After the CVE’s program’s near-death experience in April, might the Europeans be looking for a more reliable long-term system? From this week, the global technology industry has a new database to ...
FedScoop

(Common Vulnerabilities and Exposure Program (CVE)

The AI Act of 2024 from Sens. Warner and Tillis calls on NIST and CISA to update databases and NSA to launch an AI security center.
THE Journal

Cloud Security Alliance Expands Agentic AI Governance Work

The Cloud Security Alliance (CSA) has announced a series of CSAI Foundation milestones aimed at securing what it calls the agentic control plane, including a new catastrophic risk initiative, CVE ...