The Common Vulnerabilities and Exposures (CVE) program, a vital initiative for identifying software vulnerabilities, faced potential closure due to funding uncertainty. This program, managed by the Mitre Corporation and primarily funded by the U.S. Cybersecurity and Infrastructure Security Agency (CISA), plays a critical role in establishing international standards for software flaw identification.
The program's funding, up to $44.6 million through a federal contract, faced unexpected challenges, causing significant worry in the cybersecurity community.
The near-closure of the CVE program sparked calls for improvements in the program's operational procedures. The incident underscores the importance of stable, consistent funding for essential cybersecurity initiatives.
April 16, 2025 4:44 pm ET|WSJ Pro
The cybersecurity industry was rattled this week by the near-closure of a government-funded program that tracks flaws in software, prompting calls for changes in how it operates.The Common Vulnerabilities and Exposures program, maintained by the nonprofit Mitre Corp., provides an international standard for identifying the holes in software that hackers use to breach systems. It is principally funded by the U.S. Cybersecurity and Infrastructure Security Agency, an arm of the Department of Homeland Security, through a federal contract worth up to $44.6 million.Copyright Β©2025 Dow Jones & Company, Inc. All Rights Reserved. 87990cbe856818d5eddac44c7b1cdeb8
Sign in or subscribe to understand the ever-changing landscape of cybersecurity through a business lens.
Skip the extension β just come straight here.
Weβve built a fast, permanent tool you can bookmark and use anytime.
Go To Paywall Unblock Tool