Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database: Helping Information Technology System Users and Developers Find Current Information about Cyber Security Vulnerabilities

Published

Author(s)

Shirley M. Radack

Abstract

This ITL bulletin provides information about the National Vulnerability Database (NVD), a comprehensive database of cyber security vulnerabilities in information technology (IT) products that was developed by NIST with the support of the National Cyber Security Division (NCSD) of the U.S. Department of Homeland Security. The bulletin advises readers about the U.S. Government organizations that are collaborating to raise awareness about the vulnerabilities of information systems and to provide easily accessible resources to the public. The bulletin discusses the alerts and technical advisory notices that are developed by the cooperating organizations and how the NVD integrates these publicly available U.S. Government vulnerability resources along with references on vulnerabilities developed by industry . Other topics discussed include the Common Vulnerabilities and Exposures (CVE), a naming standard that was jointly developed by government, industry and research organizations, and supporting guidance developed by ITL to help agencies manage vulnerabilities and use patch management processes.
Citation
ITL Bulletin -

Keywords

Common Vulnerabilities and Exposures (CVE), National Vulnerability Database (NVD), Open Vulnerability and Assessment Language (OVAL), patch and vulnerability management, vulnerabilities

Citation

Radack, S. (2005), National Vulnerability Database: Helping Information Technology System Users and Developers Find Current Information about Cyber Security Vulnerabilities, ITL Bulletin, National Institute of Standards and Technology, Gaithersburg, MD, [online], https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=150396 (Accessed December 22, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created October 27, 2005, Updated May 4, 2021