cve
NIST to stop rating non-priority flaws due to volume increase
The National Institute of Standards and Technology will stop assigning severity scores to lower-priority vulnerabilities due to the growing workload from rising submission volumes. Starting April 15, the service will only analyze and provide additional details (e.g., severity rating, product lists) for security issues that meet specific criteria related to the risk they pose. The […]
CISA extends funding to ensure ‘no lapse in critical CVE services’
CISA says the U.S. government has extended MITRE’s funding to ensure no continuity issues with the critical Common Vulnerabilities and Exposures (CVE) program. “The CVE Program is invaluable to cyber community and a priority of CISA,” the U.S. cybersecurity agency told GeekFeed. “Last night, CISA executed the option period on the contract to ensure there […]
MITRE warns that funding for critical CVE program expires today
MITRE Vice President Yosry Barsoum has warned that U.S. government funding for the Common Vulnerabilities and Exposures (CVE) and Common Weakness Enumeration (CWE) programs expires today, which could lead to widespread disruption across the global cybersecurity industry. CVE, the most critical of the two, is maintained by MITRE with funding from the U.S. National Cyber Security Division […]
Nvidia patches five high-severity bugs in its software
High-flying Nvidia took care of some routine business on June 6 when it reported three high-severity bugs in its GPU Display Driver and another two high-severity bugs in Nvidia’s vGPU software. In a security bulletin to customers, Nvidia said an exploit of the GPU Display Driver bugs could lead to a combination or all of […]