In a critical late decision, the US government extended funding for the Common Vulnerabilities and Exposures (CVE) Program, averting a lapse in operations after a contract with MITRE was not renewed. CISA confirmed the continuation of funding to maintain CVE services, which are vital for tracking and identifying cybersecurity vulnerabilities. Additionally, CVE board members announced the creation of a nonprofit CVE Foundation to further ensure the program's longevity and independence from federal funding uncertainties, enhancing resilience and community involvement in vulnerability management.
"The formation of the CVE Foundation marks a major step toward eliminating a single point of failure in the vulnerability management ecosystem and ensuring the CVE Program remains a globally trusted, community-driven initiative..."
"CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services. We appreciate our partners' and stakeholders' patience."
Collection
[
|
...
]