NIST creates forum to comment on software vulnerabilities

By | September 11, 2006

The National Institute of Standards and Technology today launched a service within its National Vulnerability Database that will allow vendors to discuss the impact of vulnerabilities on their products.

“The service is designed to be a public forum for vendors to comment on the vulnerabilities, and to have those comments embedded in databases and discussions,” said NVD program manager Peter Mell.

The National Vulnerability Database is an outgrowth of the Common Vulnerabilities and Exposures dictionary, developed and maintained by Mitre Corp., which establishes a standard naming scheme for software vulnerabilities. NIST established NVD as a central source for information on vulnerabilities, using the CVE. The database, at, receives 25 million hits a year and an Extensible Markup Language feed updates the information for subscribers every two hours.Read Full Story

Leave a Reply