HomeCVE Program for Tracking Security Flaws Faces Loss of Federal Funding
Funding Crisis Looms for Critical Cybersecurity Program
The Common Vulnerabilities and Exposures (CVE) program, a cornerstone for cybersecurity efforts worldwide, is facing a dire situation as its funding is set to expire. This program, utilized by tech giants such as Microsoft, Google, Apple, Intel, and AMD, plays a pivotal role in identifying and tracking publicly known cybersecurity vulnerabilities. It's a tool that helps engineers gauge the severity of exploits and prioritize necessary patches or mitigations.
MITRE, the organization behind CVE, has revealed to *The Verge* that its contract to manage and enhance the program is due to end on April 16th. Since its inception in 1999, CVE has maintained a vital database where organizations can assign unique IDs to known vulnerabilities. These IDs, formatted as "CVE" followed by a year and a number (e.g., CVE-2022-27254), enable security professionals to keep tabs on vulnerabilities that could affect everyday devices and critical systems.
Global Impact of CVE Funding Shortfall
Security and privacy researcher Lukasz Olejnik took to X to express his concerns, warning that without continued support, the CVE system could "cripple" global cybersecurity efforts. He emphasized that the absence of CVE could lead to a breakdown in coordination among vendors, analysts, and defense systems, resulting in widespread confusion and a significant weakening of cybersecurity measures.
Despite the looming deadline, Yosry Barsoum, MITRE's vice president and director at the Center for Securing the Homeland, remains optimistic. In an emailed statement to *The Verge*, Barsoum noted that the government is actively working to sustain MITRE's role in the program, and MITRE is committed to maintaining CVE as a global resource. He also mentioned that the funding change could impact the related Common Weakness Enumeration program, which focuses on cataloging hardware and software weaknesses.
Leaked Documents and Official Statements
The urgency of the situation came to light through a leaked letter to CVE board members, which was shared on social platforms X and Bluesky. MITRE, which receives its funding from the US Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), is tasked with operating and advancing the CVE Program as an independent, objective third party, as outlined in an official video about the program.
The potential discontinuation of funding for the CVE program is a stark reminder of the fragile nature of cybersecurity infrastructure. As the deadline approaches, the tech community and security professionals worldwide are watching closely, hoping for a resolution that will keep this essential tool operational.
Related article
Duolingo Faces New Competition as Google Integrates Language Learning into Translate
Google is introducing AI-driven language learning tools directly into its Translate application. This new beta feature personalizes language lessons to match your proficiency and specific goals, like preparing for an international trip.Initially, the
EcoFlow Launches Plug-In Solar Power Systems for US Households
The United States is now introducing EcoFlow's DIY balcony solar system, which I previously reviewed in Europe. EcoFlow states that its Stream Series will be the first plug-and-play solar products available domestically, enabling homeowners and rente
Google Launches Gemini CLI for Developers
Google has launched a new open-source AI agent that brings the coding, content generation, and research power of Gemini directly into developer terminals. Dubbed Gemini CLI, Google describes it as a "fundamental upgrade to your command-line experienc
Related Special Topic Recommendations
Business
Best AI Recruiting Tools: Screen Resumes & Automate Candidate Interview Scheduling
Discover the 2026 latest top-rated AI recruiting tools on XIX.AI. Our curated list features powerful, game-changing solutions for screening resumes and automating candidate interview scheduling. Compare free vs paid options with real-world tests and weekly updated rankings. Find your perfect hiring assistant and streamline your recruitment today!
10 tools
xix.ai
Productivity
AI Personal Wellness & Focus Coaches: Manage Burnout & Boost Mental Energy Levels
Discover the 2026 best AI personal wellness and focus coaches on XIX.AI. Our curated rankings feature top-rated, game-changing tools to manage burnout and boost mental energy. Compare free vs paid options with real-world insights. Unlock your path to peak productivity and well-being today.
10 tools
xix.ai
chatbot
Top-Rated AI Romantic Chatbots: Build Long-Term Relationships with Consistent Personalities
Discover the 2026 latest top-rated AI romantic chatbots for building genuine, long-term connections. Our curated list features powerful, consistent personalities, free vs paid comparisons, and real-world tests. Find your perfect companion and start building today at XIX.AI.
10 tools
xix.ai
Education and Learning
Best AI Data Science Mentors: Master SQL, Pandas & Machine Learning Workflows
Discover the 2026 best AI data science mentors to master SQL, Pandas & ML workflows. Explore our top-rated, curated selection at XIX.AI for powerful, game-changing guidance. Compare free vs paid options with real-world insights. Unlock your data science mastery today.
10 tools
xix.ai
chatbot
Best AI Flirting & Conversation Trainers: Improve Social Charisma and Confidence in Real-Time
Discover the 2026 best AI flirting and conversation trainers on XIX.AI. Our curated, top-rated selection helps you build social charisma and confidence in real-time. Explore must-try, game-changing tools with free vs paid comparisons and weekly updated rankings. Unlock your social edge today.
10 tools
xix.ai
code
Best AI Tools for Automated Unit Testing: Generate Jest, PyTest & JUnit Test Cases in One Click
Discover the 2026 latest top-rated AI tools for automated unit testing. Our curated selection features powerful, game-changing solutions to generate Jest, PyTest & JUnit test cases instantly. Compare free vs paid options with real-world tests and weekly updated rankings on XIX.AI. Unlock your AI edge and boost development productivity today.
10 tools
xix.ai
Comments (31)
0/500
![NicholasClark]()
CVEプログラムが資金不足で危機に瀕しているなんて信じられない!😱 このプログラムはサイバーセキュリティにとって不可欠です。なくなったら大混乱になるよ。政府が早く対策を講じてほしいな。
![PeterYoung]()
The CVE program is crucial for keeping our digital world safe, but it's shocking to hear it might lose funding! 😱 We need to support this program to keep up with cybersecurity threats. Can't imagine the chaos without it. Let's hope the government steps up!
![AlbertRamirez]()
CVE प्रोग्राम हमारी डिजिटल सुरक्षा के लिए महत्वपूर्ण है, और यह सोचकर डर लगता है कि इसकी फंडिंग खत्म हो सकती है! 😱 यह साइबर दुनिया में एक रक्षक को खोने जैसा है। मुझे उम्मीद है कि वे इसे जारी रखने का कोई तरीका ढूंढ लेंगे, नहीं तो हम सब मुश्किल में हैं। और फंड के लिए लड़ते रहो, लोग!
![AnthonyHill]()
The CVE program losing funding is a huge blow to cybersecurity! 😱 It's like the backbone of our security efforts, and now it's in jeopardy. I hope they find a way to keep it going, or we're all in trouble. Fingers crossed! 🤞
![EdwardTaylor]()
CVEプログラムが資金を失うのは、サイバーセキュリティにとって大きな打撃ですね!😱 これは私たちのセキュリティ努力の支柱であり、今危機に瀕しています。なんとか続けてもらいたいです、さもないと大変です。願っています!🤞
![NicholasAllen]()
Chương trình CVE mất tài trợ là một thảm họa sắp xảy ra! Nó rất quan trọng đối với an ninh mạng, nhưng giờ đây đang gặp rủi ro. Các gã khổng lồ công nghệ cần phải hành động và hỗ trợ điều này. Hy vọng nó sẽ nhận được tài trợ cần thiết! 😬
Funding Crisis Looms for Critical Cybersecurity Program
The Common Vulnerabilities and Exposures (CVE) program, a cornerstone for cybersecurity efforts worldwide, is facing a dire situation as its funding is set to expire. This program, utilized by tech giants such as Microsoft, Google, Apple, Intel, and AMD, plays a pivotal role in identifying and tracking publicly known cybersecurity vulnerabilities. It's a tool that helps engineers gauge the severity of exploits and prioritize necessary patches or mitigations.
MITRE, the organization behind CVE, has revealed to *The Verge* that its contract to manage and enhance the program is due to end on April 16th. Since its inception in 1999, CVE has maintained a vital database where organizations can assign unique IDs to known vulnerabilities. These IDs, formatted as "CVE" followed by a year and a number (e.g., CVE-2022-27254), enable security professionals to keep tabs on vulnerabilities that could affect everyday devices and critical systems.
Global Impact of CVE Funding Shortfall
Security and privacy researcher Lukasz Olejnik took to X to express his concerns, warning that without continued support, the CVE system could "cripple" global cybersecurity efforts. He emphasized that the absence of CVE could lead to a breakdown in coordination among vendors, analysts, and defense systems, resulting in widespread confusion and a significant weakening of cybersecurity measures.
Despite the looming deadline, Yosry Barsoum, MITRE's vice president and director at the Center for Securing the Homeland, remains optimistic. In an emailed statement to *The Verge*, Barsoum noted that the government is actively working to sustain MITRE's role in the program, and MITRE is committed to maintaining CVE as a global resource. He also mentioned that the funding change could impact the related Common Weakness Enumeration program, which focuses on cataloging hardware and software weaknesses.
Leaked Documents and Official Statements
The urgency of the situation came to light through a leaked letter to CVE board members, which was shared on social platforms X and Bluesky. MITRE, which receives its funding from the US Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA), is tasked with operating and advancing the CVE Program as an independent, objective third party, as outlined in an official video about the program.
The potential discontinuation of funding for the CVE program is a stark reminder of the fragile nature of cybersecurity infrastructure. As the deadline approaches, the tech community and security professionals worldwide are watching closely, hoping for a resolution that will keep this essential tool operational.
Duolingo Faces New Competition as Google Integrates Language Learning into Translate
Google is introducing AI-driven language learning tools directly into its Translate application. This new beta feature personalizes language lessons to match your proficiency and specific goals, like preparing for an international trip.Initially, the
EcoFlow Launches Plug-In Solar Power Systems for US Households
The United States is now introducing EcoFlow's DIY balcony solar system, which I previously reviewed in Europe. EcoFlow states that its Stream Series will be the first plug-and-play solar products available domestically, enabling homeowners and rente
Google Launches Gemini CLI for Developers
Google has launched a new open-source AI agent that brings the coding, content generation, and research power of Gemini directly into developer terminals. Dubbed Gemini CLI, Google describes it as a "fundamental upgrade to your command-line experienc
Discover the 2026 latest top-rated AI recruiting tools on XIX.AI. Our curated list features powerful, game-changing solutions for screening resumes and automating candidate interview scheduling. Compare free vs paid options with real-world tests and weekly updated rankings. Find your perfect hiring assistant and streamline your recruitment today!
10 tools
xix.ai
Discover the 2026 best AI personal wellness and focus coaches on XIX.AI. Our curated rankings feature top-rated, game-changing tools to manage burnout and boost mental energy. Compare free vs paid options with real-world insights. Unlock your path to peak productivity and well-being today.
10 tools
xix.ai
Discover the 2026 latest top-rated AI romantic chatbots for building genuine, long-term connections. Our curated list features powerful, consistent personalities, free vs paid comparisons, and real-world tests. Find your perfect companion and start building today at XIX.AI.
10 tools
xix.ai
Discover the 2026 best AI data science mentors to master SQL, Pandas & ML workflows. Explore our top-rated, curated selection at XIX.AI for powerful, game-changing guidance. Compare free vs paid options with real-world insights. Unlock your data science mastery today.
10 tools
xix.ai
Discover the 2026 best AI flirting and conversation trainers on XIX.AI. Our curated, top-rated selection helps you build social charisma and confidence in real-time. Explore must-try, game-changing tools with free vs paid comparisons and weekly updated rankings. Unlock your social edge today.
10 tools
xix.ai
Discover the 2026 latest top-rated AI tools for automated unit testing. Our curated selection features powerful, game-changing solutions to generate Jest, PyTest & JUnit test cases instantly. Compare free vs paid options with real-world tests and weekly updated rankings on XIX.AI. Unlock your AI edge and boost development productivity today.
10 tools
xix.ai
CVEプログラムが資金不足で危機に瀕しているなんて信じられない!😱 このプログラムはサイバーセキュリティにとって不可欠です。なくなったら大混乱になるよ。政府が早く対策を講じてほしいな。
The CVE program is crucial for keeping our digital world safe, but it's shocking to hear it might lose funding! 😱 We need to support this program to keep up with cybersecurity threats. Can't imagine the chaos without it. Let's hope the government steps up!
CVE प्रोग्राम हमारी डिजिटल सुरक्षा के लिए महत्वपूर्ण है, और यह सोचकर डर लगता है कि इसकी फंडिंग खत्म हो सकती है! 😱 यह साइबर दुनिया में एक रक्षक को खोने जैसा है। मुझे उम्मीद है कि वे इसे जारी रखने का कोई तरीका ढूंढ लेंगे, नहीं तो हम सब मुश्किल में हैं। और फंड के लिए लड़ते रहो, लोग!
The CVE program losing funding is a huge blow to cybersecurity! 😱 It's like the backbone of our security efforts, and now it's in jeopardy. I hope they find a way to keep it going, or we're all in trouble. Fingers crossed! 🤞
CVEプログラムが資金を失うのは、サイバーセキュリティにとって大きな打撃ですね!😱 これは私たちのセキュリティ努力の支柱であり、今危機に瀕しています。なんとか続けてもらいたいです、さもないと大変です。願っています!🤞
Chương trình CVE mất tài trợ là một thảm họa sắp xảy ra! Nó rất quan trọng đối với an ninh mạng, nhưng giờ đây đang gặp rủi ro. Các gã khổng lồ công nghệ cần phải hành động và hỗ trợ điều này. Hy vọng nó sẽ nhận được tài trợ cần thiết! 😬
