<![CDATA[NIST updated their NVD operations.]]>NIST updated their NVD operations. They will now prioritize CISA's KEV catalog, federal government software, and "critical software" defined in the Executive Order 14028 for faster enrichment.

They also will not assign their own severity scores to CVEs that received a score from CNAs.

AI CVEs took a toll on them, it seems like.

Link Preview Image
NIST Updates NVD Operations to Address Record CVE Growth

NIST is changing the way it handles cybersecurity vulnerabilities and exposures, or CVEs, listed in its National Vulnerabilit

favicon

NIST (www.nist.gov)

]]>https://board.circlewithadot.net/topic/38aadb8f-226c-402b-8c29-8600e06ab03e/nist-updated-their-nvd-operations.RSS for NodeFri, 17 Apr 2026 01:12:10 GMTWed, 15 Apr 2026 21:36:21 GMT60