Forbes

CVE’s Near Cybersecurity Miss Averted — But The World Must Step Up

The cybersecurity world, shocked by the near-shutdown of the CVE system — a quiet crisis that nearly disrupted the backbone of global vulnerability coordination. In cybersecurity, some moments pass ...
The Hacker News

Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials

Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure.
The Hacker News

Microsoft Patches 84 Flaws in March Patch Tuesday, Including Two Public Zero-Days

Microsoft patches 84 vulnerabilities, including two public zero-days, strengthening defenses against privilege escalation and ...
CSO Online

CVE program funding secured, easing fears of repeat crisis

The funding crisis that nearly shut down the global vulnerability tracking system last year has quietly been resolved, easing fears of another abrupt disruption to a cornerstone of the cybersecurity ...
SecurityWeek

Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks

CVE-2021-22681, an old vulnerability affecting ICS products from Rockwell Automation, has been exploited in attacks.
Android Authority

CVE program gets its funding back, and new foundation promises long-term stability

Yesterday the organization operating the Common Vulnerabilities and Exposures database (CVE) announced that government funding was about to end. The US Cybersecurity and Infrastructure Security Agency ...
Benzinga.com

Pillar Of America's Cyber Security Lost Funding Temporarily: What Investors Should Know About CVE Program, Funding Extension

The cybersecurity sector may be breathing a sigh of relief after a deal was reached to continue funding for the Common Vulnerabilities and Exposures database, commonly known as the CVE program. What ...
TechRepublic

Possible National Security Crisis Averted: CISA’s Reversal Extends Support for CVE Database

Possible National Security Crisis Averted: CISA’s Reversal Extends Support for CVE Database Your email has been sent The nonprofit organization MITRE, which maintains the Common Vulnerabilities and ...
The Verge

Trump administration decides to fund CVE cybersecurity tracker after all

Posts from this topic will be added to your daily email digest and your homepage feed. CISA renewed its contract to ‘ensure there will be no lapse in critical CVE services.’ CISA renewed its contract ...
Business Wire

CVE Program Celebrates 25 Years of Impact in Cybersecurity

MCLEAN, Va., & BEDFORD, Mass.--(BUSINESS WIRE)--Today, the Common Vulnerabilities and Exposures (CVE®) Program proudly commemorates its 25th anniversary, marking a quarter-century of enabling ...
SDxCentral

CVE Program marks 25 years of advancing cybersecurity efforts

As organizations face increasing cybersecurity threats, the Common Vulnerabilities and Exposures (CVE) Program marks its 25th anniversary, highlighting its role in coordinated vulnerability management ...
TechSpot

The US almost let the CVE system die - the cybersecurity world's universal bug tracker

Why it matters: Articles on this site that cover software vulnerabilities typically include CVE codes, which tech companies worldwide use to identify cybersecurity threats. Funding for the program ...