NIST unveils new vulnerability database

Share this article:

The National Institute of Standards and Technology (NIST) has launched a new vulnerability database that integrates all publicly available federal vulnerability resources and provides links to industry resources.

The National Vulnerability Database (NVD) aims to make it easier for system administrators and other security practioners to learn about vulnerabilities and how to fix them, according to NIST.

About 300 new vulnerabilities are discovered each month and a single flaw often is known by various names, making it hard for administrators to keep up, the agency said.

NVD is based on the Common Vulnerabilities and Exposure (CVE) standard for naming vulnerabilities.

The database has information on about 12,000 vulnerabilities and is updated daily. Users can search by vulnerability type, severity and impact, software name and version number, and vendor. Users also can research the vulnerability history of a product and view vulnerability trends.

NVD was developed by researchers in NIST's Computer Security Division and is sponsored by the Department of Homeland Security National Cyber Security Division/U.S.-CERT.

http://nvd.nist.gov

Share this article:
You must be a registered member of SC Magazine to post a comment.
close

Next Article in News

Sign up to our newsletters

More in News

Beazley: employee errors root of most data breaches, but malware incidents cost ...

Insurance firm Beazley analyzed more than 1,500 data breaches it serviced between 2013 and 2014.

Apple issues seven updates, fixes more than 40 vulnerabilities in iOS 8, OS 10.9.5

Apple issues seven updates, fixes more than 40 ...

In one of its infrequent "Update Surprisedays," Apple plugged holes, boosted security and added features.

Canadian telecom co. Telus unveils first transparency report

The company received more than 100,000 government requests for customer data last year.