Common Vulnerabilities and Exposures is a list of standardized identifiers for publicly known computer vulnerabilities. CVE is designed to cataloge and standardize the names for all publicly known vulnerabilities and exposures through the use of a unique identifier which may be used to refer to a specific vulnerability unambiguously.

Overview

Launched in 1999, CVE is maintained by The MITRE Corporation. The list is federally funded by the National Cyber Security Division (NCSD) of the U.S. Department of Homeland Security (DHS). MITRE maintains the list through an editorial board (operates per the CVE Board Charter) consisting of a board range of members from industry, research institutions, vendors, government agencies, security experts, and other individuals.