CVEs

NIST has announced that all CVEs published before 2018 will be marked as ‘Deferred’ in the National Vulnerability Database, reallocating resources towards emerging threats while placing the responsibility for legacy vulnerabilities on individual organizations.