Vulnerability Management
-
Crisis in CVE Funding Sparks Urgent Rethink in Vulnerability Management
The funding crisis affecting the Common Vulnerabilities and Exposures (CVE) program has prompted urgent reassessments in how organizations manage vulnerabilities, highlighting the necessity for adapting security strategies amid a surge in disclosed vulnerabilities and evolving threats.
-
Cybersecurity Community Breathes a Sigh of Relief as CVE Database Funding Extended
The cybersecurity community expressed relief following an 11-month funding extension for the CVE database, which will continue operations after concerns of a shutdown. Industry leaders stress the importance of establishing a long-term plan for its future to maintain effective vulnerability management.
-
US Government Agrees to Continue Funding CVE Program Amid Concerns
In a crucial move for the cybersecurity sector, the US government has agreed to extend funding for the Common Vulnerabilities and Exposures (CVE) program amid concerns over its future. Following MITRE’s announcement that federal support was about to end, this extension ensures the continuity of CVE services, which are pivotal in identifying and managing technology…
-
End of CVE Program Sparks Concerns Among Cybersecurity Experts
The Department of Homeland Security’s decision to let its contract with MITRE expire could jeopardize the future of the Common Vulnerabilities and Exposures (CVE) program, raising alarms among cybersecurity experts about the potential disruption to vulnerability tracking and management.
-
NIST Places Pre-2018 Vulnerabilities on Deferred Status Amid Resource Reallocation
NIST has announced that all CVEs published before 2018 will be marked as ‘Deferred’ in the National Vulnerability Database, reallocating resources towards emerging threats while placing the responsibility for legacy vulnerabilities on individual organizations.
