Techly NewsGet the app

Get the latest tech news

CVE program faces swift end after DHS fails to renew contract


MITRE’s 25-year-old Common Vulnerabilities and Exposures (CVE) program will end April 16 after DHS did not renew its funding contract for reasons unspecified. Experts say ending the program, which served as the crux for most cybersecurity defense programs, is a tragedy.

However, sources say that compared to the budget cuts made elsewhere in the federal government, the expense of running the CVE program are minor and “won’t break the bank.” “It’s difficult to speculate on what services could be impacted reading the note from MITRE,” Patrick Garrity, a security researcher at threat intelligence firm Vulncheck, told CSO. Although CISA’s contract with the MITRE Corporation will lapse after April 16, we are urgently working to mitigate impact and to maintain CVE services on which global stakeholders rely.”

Get the Android app

Or read this on r/technology

Read more on:

Photo of Limbo

Limbo

Photo of contract

contract

Photo of CVE

CVE

Related news:

News photo

US abruptly turns off funding for CVE program

News photo

Uncle Sam kills funding for CVE program. Yes, that CVE program

News photo

The CVE program for tracking security flaws is about to lose federal funding

« Flexport (YC W14) is hiring software engineers
Zuckerberg’s antitrust testimony aired his wildest ideas in Meta’s history »