NIST’s shift toward selective CVE enrichment creates significant visibility gaps for teams relying solely on the National Vulnerability Database. As AI accelerates vulnerability disclosure rates, ...

The National Institute of Standards and Technology has implemented changes to how it processes cybersecurity vulnerabilities ...

The U.S. National Institute of Standards and Technology today announced an overhaul of how it processes cybersecurity vulnerabilities in its National Vulnerability Database . NIST is abandoning its ...

NIST limits CVE enrichment after 263% surge since 2020, prioritizing KEV and federal software, shifting thousands to “Not ...

The National Institute of Standards and Technology will stop assigning severity scores to lower-priority vulnerabilities due ...

NIST can't keep up with vulnerability submissions.

NIST says it is working “faster than ever” to keep up with 45 per cent year-on-year growth in reported vulnerabilities.

Add Yahoo as a preferred source to see more of our stories on Google. The front entrance sign at the Gaithersburg, Md., National Institute of Standards and Technology campus. (R. Eskalis/NIST.

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...

If AI can find and fix vulnerabilities faster than humans ever could, are we finally getting ahead of risk? Our metrics were ...