The funding for MITRE's Common Vulnerabilities and Exposures (CVE) Program is set to expire, threatening its crucial role in identifying cybersecurity vulnerabilities across various sectors including private industry and national intelligence. Established in 1999, the CVE Program provides a standardized framework facilitating consistent communication regarding vulnerabilities. If funding is not renewed, significant impacts may arise such as deteriorating national vulnerability databases and disruptions in critical infrastructure. Despite this uncertainty, MITRE expresses its ongoing commitment to the program and acknowledges government support.
The CVE Program provides a standardized system for identifying and cataloging publicly known cybersecurity vulnerabilities, essential for consistent communication among security professionals.
Rumors about the expiration in funding surfaced Tuesday when an internal memo purportedly sent to CVE board members from Barsoum made its way across social media.
If a break in service were to occur, we anticipate multiple impacts to CVE, including deterioration of national vulnerability databases and advisories.
The government continues to make considerable efforts to support MITRE's role in the program and MITRE remains committed to CVE as a global resource.
Collection
[
|
...
]