GNU social JP
  • FAQ
  • Login
GNU social JPは日本のGNU socialサーバーです。
Usage/ToS/admin/test/Pleroma FE

  • Public

    • Public
    • Network
    • Groups
    • Featured
    • Popular
    • People

FOR IMMEDIATE RELEASE April 16,2025 CVE Foundation Launched to Secure the Future of the CVE Program Bremerton, Washington] - The CVE Foundation has been formally established to ensure the long-term viabily, stability, and independence of the Common Vulnerabilities and Exposures (CVE) Program, a critica pillar of the global cybersecurity infrastructure for 25 years. Since ts inception, the CVE Program has operated as U.S. government. funded nitive, with oversight and management provided under contact. While ths structure has supported the prograny’s growth, it has alo raised longstanding concems among members of the CVE Board shout the sustainability and neutrality of globally relicd-upon resource being ted 0 a single ovemment sponsor. “This concern has become urgent following an April 15, 2025 leter from MITRE notifying the ‘CVE Board that the U.S. government docs not intend 0 renew ts contract for managing the program. While we had hoped this day would not come, we have been preparing fo this possibility. In response, a coalition of longtime, active CVE Bosrd members have spent the past year developing a strategy o transition CVE to dedicated, non-profit foundation. The news CVE. Foundation wil focus solly on continuing the mission of delivering high-quality vulnerability identification and maintaining th integrity and availabilty of CVE data for defenders worldwide,

Download link

https://media.infosec.exchange/infosec.exchange/media_attachments/files/114/348/289/245/954/517/original/c772e17d6525f817.png

Notices where this attachment appears

  1. Embed this notice
    BrianKrebs (briankrebs@infosec.exchange)'s status on Thursday, 17-Apr-2025 00:22:05 JST BrianKrebs BrianKrebs
    in reply to

    UPDATE: The CVE board today announced the creation of non-profit entity called The CVE Foundation that will continue the program's work under a new, unspecified funding mechanism and organizational structure.

    "Since its inception, the CVE Program has operated as a U.S. government-funded initiative, with oversight and management provided under contract," the press release reads. "While this structure has supported the program's growth, it has also raised longstanding concerns among members of the CVE Board about the sustainability and neutrality of a globally relied-upon resource being tied to a single government sponsor."

    The organization's website, thecvefoundation.org, is less than a day old and currently hosts no content. The announcement said the foundation would release more information about its structure and transition planning in the coming days.

    In conversation about a month ago from infosec.exchange permalink
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.