TechSpot

The US almost let the CVE system die - the cybersecurity world's universal bug tracker

Why it matters: Articles on this site that cover software vulnerabilities typically include CVE codes, which tech companies worldwide use to identify cybersecurity threats. Funding for the program ...
Business Wire

TP-Link Systems Inc. Receives CVE Numbering Authority Designation for Cybersecurity Vulnerability Management

IRVINE, Calif.--(BUSINESS WIRE)--TP-Link Systems Inc., a global leader in networking and smart home solutions, today announced its official authorization by the Common Vulnerability and Exposures ...

New Security Vulnerability Database Launches In The EU

A new vulnerability database has launched in the EU, in a bid to reduce dependence on the U.S. program. Here's what you need ...
Homeland Security Today

CISA to Oversee CVE Numbering Authorities for Industrial Control Systems and Medical Devices

The Common Vulnerabilities and Exposures (CVE®) Program announced it is granting authority to the Cybersecurity and Infrastructure Security Agency (CISA) for managing the assignment of CVE Identifiers ...
Hosted on MSN

The CVE program for tracking security flaws is about to lose federal funding

Funding is about to run out for the Common Vulnerabilities and Exposures (CVE) program – a system used by major companies like Microsoft, Google, Apple, Intel, and AMD to identify and track publicly ...
CSO Online

EU’s answer to CVE solves dependency issue, adds fragmentation risks

Integration with common vulnerability management tools is needed for GCVE.eu to reach its full potential — and not introduce additional friction and confusion into CISOs’ remediation strategies.
Security Boulevard

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Command Injection Vulnerability

Exploit code has been published for CVE-2025-64155, a critical command injection vulnerability affecting Fortinet FortiSIEM devices.Key takeaways:CVE-2025-64155 is a critical operating system (OS) ...
MIT Technology Review

Cybersecurity’s global alarm system is breaking down

The US system to track vulnerabilities is struggling to keep up with its backlog. Experts are scrambling to assemble alternatives. Every day, billions of people trust digital systems to run everything ...

CISA says critical VMware RCE flaw now actively exploited

CISA has flagged a critical VMware vCenter Server vulnerability as actively exploited and ordered U.S. federal agencies to secure their servers within three weeks.
9to5Mac

CVE security program used by Apple and others has funding removed [U]

The CVE security program used to track vulnerabilities in both hardware and software has had its federal funding removed with immediate effect. Apple is one of a number of tech giants who rely on the ...
Infosecurity Magazine

Experts Welcome Global Cybersecurity Vulnerability Enumeration Launch

A new service, the Global Cybersecurity Vulnerability Enumeration (GCVE), offers an alternative to the US-led CVE ...

CERT-In warns macOS and Chrome users of serious security risk: How to stay safe online

India’s cyber security agency CERT-In has warned macOS and Google Chrome users about serious vulnerabilities that could lead ...