Research · NIST AI
NVD Metadata Submission Guidelines for CVE Numbering Authorities and Authorized Data Publishers: Draft NISTIR 8246 Available for Comment
Compiled by KHAO Editorial — aggregated from 1 outlet. See llms.txt for citation guidance.
✓ KHAO Verified
Official websites use.gov A.gov website belongs to an official government organization in the United States.
Key facts
- The public comment period for this document is open through March 20, 2020
- Currently, a National Vulnerability Database (NVD) analyst manually reviews each CVE and attaches multiple forms of CVE metadata used by downstream consumers to prioritize and assist automated
- The number of Common Vulnerabilities and Exposures identifiers (CVE IDs) created year over year has rapidly increased, and this trend is expected to continue indefinitely
- Official websites use.gov A.gov website belongs to an official government organization in the United States
Summary
Secure.gov websites use HTTPS A lock or https:// means you’ve safely connected to the.gov website. The number of Common Vulnerabilities and Exposures identifiers (CVE IDs) created year over year has rapidly increased, and this trend is expected to continue indefinitely. Draft NISTIR 8246, National Vulnerability Database (NVD) Metadata Submission Guidelines for Common Vulnerabilities and Exposures (CVE) Numbering Authorities (CNAs) and Authorized Data Publishers, seeks to leverage the strength of technical knowledge provided by the CNAs and the application of consistent and unbiased CVE metadata provided by NVD analysts through the formalization of a CVE entry metadata submission process. The public comment period for this document is open through March 20, 2020.