Vulnerabilities Checklists Product Dictionary Impact Metrics Data Feeds Statistics
Home ISAP/SCAP SCAP Validated Tools SCAP Events About Contact Vendor Comments
Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status

NVD contains:

32678 CVE Vulnerabilities
161Checklists
151 US-CERT Alerts
2257 US-CERT Vuln Notes
2097OVAL Queries

Last updated:  09/15/08

CVE Publication rate:

11 vulnerabilities / day
Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index
Vulnerability Workload Index: 6.66
About Us

NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security’s National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

OMB Federal Desktop Core Configuration Checklists(provided in SCAP format to be used with SCAP tools)

The symbol denotes newly added in the past 60 days.
The symbol denotes updated in the past 60 days.

Firewalls
Windows Vista Firewall FDCC Bundle
FDCC Group Policy Objects - Windows Vista Firewall
FDCC Prose Guide - Windows Vista Firewall
FDCC SCAP Configuration Content - Windows Vista Firewall
Windows XP Firewall FDCC Bundle
FDCC Group Policy Objects - Windows XP Firewall
FDCC Prose Guide - Windows XP Firewall
FDCC SCAP Configuration Content - Windows XP Firewall

Operating System
Windows Vista FDCC Bundle
FDCC Group Policy Objects - Windows Vista
FDCC Prose Guide - Windows Vista
FDCC SCAP Configuration Content - Windows Vista
FDCC SCAP OVAL Patches - Windows Vista
Windows XP FDCC Bundle
FDCC Group Policy Objects - Windows XP
FDCC Prose Guide - Windows XP
FDCC SCAP Configuration Content - Windows XP
FDCC SCAP OVAL Patches - Windows XP

Web Browser
IE7 FDCC Bundle
FDCC Group Policy Objects - IE7
FDCC Prose Guide - IE7
FDCC SCAP Configuration Content - IE7
FDCC SCAP OVAL Patches - IE7

Disclaimer Notice & Privacy Statement / Security Notice

Send comments or suggestions to nvd@nist.gov

NIST Computer Security Resource Center (CSRC)

NIST is an Agency of the U.S. Commerce Department

Full vulnerability listing