NIST · Data Center · U.S. · NIST AI
CVMAP for CVE Numbering Authorities (CNAs) and Authorized Data Publishers: NISTIR 8246
Compiled by KHAO Editorial — aggregated from 2 outlets. See llms.txt for citation guidance.
★ Tier-1 Source
Official websites use.gov A.gov website belongs to an official government organization in the United States.
Key facts
- NIST announces the publication of NISTIR 8246, Collaborative Vulnerability Metadata Acceptance Process (CVMAP) for CVE Numbering Authorities (CNAs) and Authorized Data Publishers
- Currently, a National Vulnerability Database (NVD) analyst manually reviews each CVE and attaches multiple forms of CVE metadata used by downstream consumers to prioritize and assist automated
- [Intended audience: CNAs (CVE Numbering Authorities), Authorized Data Publishers]
- The number of Common Vulnerabilities and Exposures identifiers (CVE IDs) created year over year has rapidly increased, and this trend is expected to continue indefinitely
Summary
Secure.gov websites use HTTPS A lock or https:// means you’ve safely connected to the.gov website. NIST announces the publication of NISTIR 8246, Collaborative Vulnerability Metadata Acceptance Process (CVMAP) for CVE Numbering Authorities (CNAs) and Authorized Data Publishers. The number of Common Vulnerabilities and Exposures identifiers (CVE IDs) created year over year has rapidly increased, and this trend is expected to continue indefinitely. This NISTIR leverages the technical knowledge provided by the CNAs and the application of consistent CVE metadata provided by NVD analysts through the formalization of a CVE entry metadata submission process.