""This change is driven by a surge in CVE submissions, which increased 263% between 2020 and 2025. We don't expect this trend to let up anytime soon.""
""We enriched nearly 42,000 CVEs in 2025 - 45% more than any prior year. But this increased productivity is not enough to keep up with growing submissions.""
""This will allow us to focus on CVEs with the greatest potential for widespread impact. While CVEs that do not meet these criteria may have a significant impact on affected systems, they generally do not present the same level of systemic risk as those in the prioritised categories.""
NIST is revising its process for handling common vulnerabilities and exposures (CVEs) in response to a significant increase in submissions. The organization will now enrich only those CVEs that meet specific criteria, while others will be listed as lower priority. This change is necessary due to a 263% rise in CVE submissions from 2020 to 2025. NIST aims to stabilize its program and develop new automated systems to manage the growing volume of vulnerabilities effectively.
Read at ComputerWeekly.com
Unable to calculate read time
Collection
[
|
...
]