CISA says it is time for the CVE Program to focus on improving trust, responsiveness, and the caliber of vulnerability data.

A crisis at the key US service for ranking vulnerabilities has been fueled by short resources and an explosion of security flaws as the volume of software production increases. Backlogs at the US ...

Get the latest federal technology news delivered to your inbox. The National Institute of Standards and Technology awarded Maryland cybersecurity firm Analygence with a $865,657 task order to help the ...

Macworld According to a report by Help Net Security, a security researcher found a vulnerability in macOS Sequoia while using a utility created by Microsoft. When exposed, the vulnerability could ...

Over the weekend, security experts were beginning to panic. MITRE announced that the US government had not renewed funding for the Common Vulnerabilities and Exposures (CVE) database. MITRE VP Yosry ...

A critical security vulnerability impacting SAP S/4HANA, an Enterprise Resource Planning (ERP) software, has come under ...

Update: Following the CVE Foundation's announcement (below), CISA has said the U.S. government is extending funding to ensure no continuity issues with the critical Common Vulnerabilities and ...

A Dec. 12 posting to Microsoft’s security update guide has confirmed that a Windows Defender vulnerability, rated as critical according to Microsoft itself, could have enabled an attacker who ...

A critical SAP S/4HANA code injection flaw tracked as CVE-2025-42957 and allowing full system takeover has been exploited in ...

China's National Vulnerability Database (NVDB), a cybersecurity platform under the Ministry of Industry and Information ...

A database used to track NYPD officer profiles contained security flaws that would have allowed a skilled-enough hacker to add, remove or modify data entries and insert potentially malicious files ...