The Cybersecurity and Infrastructure Security Agency (CISA) extended its contract for the Common Vulnerabilities and Exposures (CVE) Program after concerns arose regarding the loss of federal funding. The CVE Program has been pivotal in classifying cybersecurity vulnerabilities for 25 years and is widely relied upon by various sectors, including national intelligence. CISA emphasized the contract's importance and the need for continuity in CVE services. This extension comes amid announcements about a new initiative by some CVE Board members to establish the CVE Foundation, indicating organizational changes in the program's governance.
CISA executed the option period on the contract to ensure there will be no lapse in critical CVE services. We appreciate our partners' and stakeholders' patience.
The CVE Program has operated as a U.S. government-funded initiative, with oversight and management provided under contract, supporting the program's growth.
Collection
[
|
...
]