Techly NewsGet the app

Get the latest tech news

Why the CVE database for tracking security flaws nearly went dark - and what happens next


Expired US government funding nearly disrupted this global security system. How can we prevent this from happening again in 11 months?

fotograzia/Getty ImagesMITRE VP Yosry Barsoum warned that the government contract support enabling MITRE " to develop, operate, and modernize CVE" would expire on April 16. That would mean, Barsoum continued, "multiple impacts to CVE, including deterioration of national vulnerability databases and advisories, tool vendors, incident response operations, and all manner of critical infrastructure." The CVE program, which has cataloged more than 274,000 publicly disclosed security flaws since its inception in 1999, is relied upon by governments, private industry, and open-source communities -- in short, everyone-- to track and coordinate responses to software holes.

Get the Android app

Or read this on r/technology

Read more on:

Photo of CVE

CVE

Photo of Security flaws

Security flaws

Photo of CVE database

CVE database

Related news:

News photo

Replacing CVE

News photo

Global, distributed and backwards compatible CVE alternative launched by CERT

News photo

CVE program faces swift end after DHS fails to renew contract

« Five iPhone Security Features You Should Be Using
Chapter, a Medicare startup with links to Vance, Thiel, and Ramaswamy, just raised a round at $1.5B valuation »