|
|
|
New CVE-ID Format as of January 1, 2014 — learn more |
|
|
Technical Guidance for Handling the New CVE-ID Syntax Now Available ViewTrust Technology Makes Declaration of CVE Compatibility New CVE-ID Format in Effect as of January 1, 2014 Hillstone Networks Makes Declaration of CVE Compatibility 1 Product from Beijing Topsec Now Registered as Officially "CVE-Compatible" CVE Adopts Common Vulnerability Reporting Framework (CVRF) Standard 3 Products from 2 Organizations Now Registered as Officially "CVE-Compatible" ADTsys Software Makes Declaration of CVE Compatibility "CVE Data Sources & Product Coverage" Page Added to CVE Web Site |
||||||
|
CVE® International in scope and free for public use, CVE is a dictionary of publicly known information security vulnerabilities and exposures. CVE’s common identifiers enable data exchange between security products and provide a baseline index point for evaluating coverage of tools and services.
Focus On
CVE Now Available in CVRF Format
The CVE List is now publishing CVE content using the Common Vulnerability Reporting Framework (CVRF). Developed by the Industry Consortium for Advancement of Security on the Internet (ICASI), CVRF is an XML-based standard that enables software vulnerability information to be shared in a machine-parsable format between vulnerability information providers and consumers. CVRF is currently used by major vendors, including Red Hat, Inc., Microsoft Corporation, Cisco Systems, Inc., and Oracle Corporation, which issue their security advisories in CVRF format. Having vulnerability information in a single, standardized format speeds up information exchange and digestion, while also enabling automation. Visit Download CVE to access CVE content in CVRF format, or CVE Usage of CVRF to learn more. |
||||||
