U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

National Vulnerability Database: Helping Information Technology System Users and Developers Find Current Information about Cyber Security Vulnerabilities

Published

Author(s)

Shirley M. Radack

Abstract

This ITL bulletin provides information about the National Vulnerability Database (NVD), a comprehensive database of cyber security vulnerabilities in information technology (IT) products that was developed by NIST with the support of the National Cyber Security Division (NCSD) of the U.S. Department of Homeland Security. The bulletin advises readers about the U.S. Government organizations that are collaborating to raise awareness about the vulnerabilities of information systems and to provide easily accessible resources to the public. The bulletin discusses the alerts and technical advisory notices that are developed by the cooperating organizations and how the NVD integrates these publicly available U.S. Government vulnerability resources along with references on vulnerabilities developed by industry . Other topics discussed include the Common Vulnerabilities and Exposures (CVE), a naming standard that was jointly developed by government, industry and research organizations, and supporting guidance developed by ITL to help agencies manage vulnerabilities and use patch management processes.
Citation
ITL Bulletin -
NIST Pub Series
ITL Bulletin
Pub Type
NIST Pubs

Download Paper

Local Download

Keywords

Common Vulnerabilities and Exposures (CVE), National Vulnerability Database (NVD), Open Vulnerability and Assessment Language (OVAL), patch and vulnerability management, vulnerabilities
Cybersecurity

Citation

Radack, S. (2005), National Vulnerability Database: Helping Information Technology System Users and Developers Find Current Information about Cyber Security Vulnerabilities, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=150396 (Accessed April 19, 2024)

Created October 27, 2005, Updated May 4, 2021