Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

The National Vulnerability Database (NVD): Overview



Harold Booth, Doug Rike, Gregory A. Witte


The National Vulnerability Database (NVD), and its companion, the National Checklist Program (NCP), have provided a valuable and flexible set of services to users around the world since NVD was established in 2005. The NVD was established to provide a U.S. government repository of data about software vulnerabilities and configuration settings, leveraging open standards to provide reliable and interoperable information about vulnerability impact metrics, technical assessment methods, and references to remediation assistance and IT product identification data.
ITL Bulletin -


National Vulnerability Database, NVD, vulnerability, National Checklist Program, U.S. Computer Emergency Readiness Team, US-CERT, security


Booth, H. , Rike, D. and Witte, G. (2013), The National Vulnerability Database (NVD): Overview, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], (Accessed July 21, 2024)


If you have any questions about this publication or are having problems accessing it, please contact

Created December 18, 2013, Updated May 4, 2021