Federal agencies running MongoDB face a tight three-week window to fix a memory-disclosure bug that attackers are already ...

CISA executed the option period on MITRE’s contract to keep the essential CVE cybersecurity database running. The nonprofit organization MITRE, which maintains the Common Vulnerabilities and Exposures ...

Yesterday the organization operating the Common Vulnerabilities and Exposures database (CVE) announced that government funding was about to end. The US Cybersecurity and Infrastructure Security Agency ...

Forbes contributors publish independent expert analyses and insights. Kate O’Flaherty is a cybersecurity and privacy journalist. U.S. President Donald Trump has cut funding for the global database of ...

CVE-2025-57735 exposed a critical flaw in Apache Airflow’s session management: JSON Web Tokens (JWTs) remained valid even ...

Fortinet’s FortiClient endpoint management software, meant to harden corporate and government machines, instead exposed them ...

The U.S. government today extended a contract through which it finances the CVE Program, the cybersecurity industry’s go-to database of software vulnerabilities. The U.S. Cybersecurity and ...

The Common Vulnerability and Exposures, or CVE, repository holds the answers to some of information security’s most vital questions. Namely, which security issue are we talking about, exactly, and how ...

Juhan Lepassaar, Executive Director at ENISA. Image: Hubert Burda Media/Flickr The announcement comes after concerns that the US government would stop funding the operations of MITRE, the nonprofit ...

Were the CVE program to be discontinued, security teams would have a hard time finding one resource that would function with the same impact across the board. Here are current issues of relying on CVE ...

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. A new vulnerability database has launched in the EU, in a bid to reduce dependence on the ...