CVE® International in scope and free for public use, CVE is a dictionary of publicly known information security vulnerabilities and exposures.

CVE’s common identifiers enable data exchange between security products and provide a baseline index point for evaluating coverage of tools and services.

NVD, the U.S. National Vulnerability Database, is based upon and synchronized with the CVE List.

Request a
CVE ID
Click for guidelines & more
Update info
in a CVE ID
Click for guidelines & contact info
CVE List
downloads
Available in xml, CVRF, txt, & comma-separated
CVE content
data feeds
Available via Purdue University & NVD
Focus On

New Method to Request CVE IDs, Updates, and More from MITRE in Effect

Beginning August 29, 2016, anyone requesting a CVE ID from MITRE, requesting an update to a CVE, providing notification about a vulnerability publication, or submitting comments will do so by submitting a "CVE Request" web form. The previous practice of submitting requests via email has been discontinued.

The new CVE Request web form will make it easier for requestors to know what information to include in their initial request, and will enhance MITRE's ability to respond to those requests in a timely manner.

More >>
More >>
Page Last Updated or Reviewed: September 20, 2016