Summary: The U.S. government, through CISA, has extended funding for the critical Common Vulnerabilities and Exposures (CVE) program to prevent any service disruptions. This action comes after concerns raised by MITRE about potential lapses in funding that could impact national vulnerability databases and incident response. Additionally, the newly launched CVE Foundation aims to secure the program’s independence amid these funding uncertainties.
Affected: U.S. cybersecurity ecosystem, CVE program, MITRE
Keypoints :
- Funding for the CVE program has been extended by CISA to avoid continuity issues.
- MITRE previously warned that the expiration of government funding could disrupt cybersecurity operations.
- The CVE Foundation has been launched to ensure the program’s independence and sustainability.
- The European Union Agency for Cybersecurity (ENISA) has introduced a new European vulnerability database (EUVD).