The mission of the CVE® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities.

Identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. Total count of CVE records is currently unavailable. Please report the issue and try again later. Sorry for the inconvenience. The CVE Program partners with community members worldwide to grow CVE content and expand its usage.

6 days ago · On Apr. 15, MITRE vice president Yosry Barsoum confirmed that U.S. government funding for the CVE database and the Common Weaknesses Enumeration programs will expire, warning that it could be a...

Apr 16, 2025 · [Bremerton, Washington] – The CVE Foundation has been formally established to ensure the long-term viability, stability, and independence of the Common Vulnerabilities and Exposures (CVE) Program, a critical pillar of the global cybersecurity infrastructure for 25 years.

Apr 16, 2025 · The 25-year-old CVE program is a valuable tool for vulnerability management, offering a de facto standard to identify, define, and catalog publicly disclosed security flaws using CVE IDs. The program has listed over 274,000 CVE records to date. Yosry Barsoum, MITRE's vice president and director of the Center for Securing the Homeland (CSH ...

6 days ago · "The formation of the CVE Foundation marks a major step toward eliminating a single point of failure in the vulnerability management ecosystem and ensuring the CVE program remains a globally trusted, community-driven initiative," a statement by the oversight body said. "Over the coming days, the foundation will release more information about its structure, …

6 days ago · "The CVE Program is invaluable to cyber community and a priority of CISA," the U.S. cybersecurity agency told BleepingComputer. "Last night, CISA executed the option period on the contract to ...

The Common Vulnerabilities and Exposures (CVE) program is a dictionary or glossary of vulnerabilities that have been identified for specific code bases, such as software applications or open libraries.

Mar 24, 2025 · Twenty-five years later, the CVE program, which assigns a unique record to each reported vulnerability, is in its fifth iteration. It has become a highly valued and integral aspect of how cybersecurity defenders can consistently share information about vulnerabilities and achieve interoperability across threat databases.

The mission of the CVE ® Program is to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. There is one CVE Record for each vulnerability in the catalog. The vulnerabilities are discovered then assigned and published by organizations from around the world that have partnered with the CVE Program.