CVE - Common Vulnerabilities and Exposures (CVE)

CVE® is a list of entries—each containing an identification number, a
description, and at least one public reference—for publicly known cybersecurity vulnerabilities.

CVE Entries are used in numerous cybersecurity products and services from around the world,
including the U.S. National Vulnerability Database (NVD).

CNA Participation Growing Worldwide

CVE Numbering Authorities (CNAs)

Totals CNAs: 89 | Total Countries: 15

CNAs include vendors and projects, vulnerability researchers, national and industry CERTs, and bug bounty programs.

CNAs are how the CVE List is built. Every CVE Entry added to the list is assigned by a CNA.

How to Become a CNA >>

Latest CVE News

More >>

CVE Blog

CVE at Black Hat 2018/DEF CON 26

CVE held a “CVE Meet-Up” at the Black Hat USA 2018 and DEF CON 26 conferences in Las Vegas, Nevada, USA.

This informal get together to talk CVE was held on August 9, 2018.

More >>

Newest CVE Entries

Newest CVE IDs by @CVEnew

Follow @CVEnew >>

Page Last Updated or Reviewed: August 21, 2018

Use of the Common Vulnerabilities and Exposures (CVE®) List and the associated references from this website are subject to the terms of use. CVE is sponsored by US-CERT in the office of Cybersecurity and Communications at the U.S. Department of Homeland Security. Copyright © 1999–2018, The MITRE Corporation. CVE and the CVE logo are registered trademarks of The MITRE Corporation.