Vulnerabilities Checklists Product Dictionary Impact Metrics Data Feeds Statistics
Home ISAP/SCAP SCAP Validated Tools SCAP Events About Contact Vendor Comments
Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status

NVD contains:

33187 CVE Vulnerabilities
132Checklists
151 US-CERT Alerts
2272 US-CERT Vuln Notes
2097OVAL Queries

Last updated:  10/14/08

CVE Publication rate:

18 vulnerabilities / day
Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index
Vulnerability Workload Index: 10.33
About Us

NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security’s National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

Fourth Annual Security Automation Conference Presentations

Below is a list of presentations from the 2008 Security Automation Conference. If any presenters from the conference, or associated workshops, would like to have their presentation listed please send the presentation, presenter’s name, presentation date, and track name to paul.cichonski@nist.gov. A list of presentations from the 2007 conference can be found at: http://nvd.nist.gov/presentations.cfm

SCAP Tutorial Presentations (09/22/08) Conference Day 1 Presentations (09/23/08) (view all) Conference Day 2 Presentations (09/24/08) (view all) Workshop Presentations (09/25/08) (view all)

Disclaimer Notice & Privacy Statement / Security Notice

Send comments or suggestions to nvd@nist.gov

NIST Computer Security Resource Center (CSRC)

NIST is an Agency of the U.S. Commerce Department

Full vulnerability listing