all InfoSec news
The private sector probably isn’t coming to save the NVD
Malware Analysis, News and Indicators - Latest topics malware.news
I wrote last week about the problems arising from the massive backlog of vulnerabilities at the U.S. National Vulnerability Database.
Thousands of CVEs are still without analysis data, and the once-reliable database of every single vulnerability that’s disclosed and/or patched is now so far behind, it could take up to 100 days for the National Institute of Standards and Technology (NIST) to catch up, and that would be assuming no new vulnerabilities are disclosed during that period.
While the …
analysis backlog coming cves data database far isn national national vulnerability database nvd private private sector problems sector single vulnerabilities vulnerability vulnerability database week