NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions

2026-04-17

1 min read

by info@thehackernews.com (The Hacker News)

Read Original

Get the latest tech trends every morning

Receive daily AI-curated summaries of engineering articles from top tech companies worldwide.

Endigest AI Core Summary

NIST has updated its CVE enrichment policies due to a 263% increase in vulnerability submissions between 2020 and 2025, now prioritizing only high-impact vulnerabilities.

•Priority criteria focus on CVEs in CISA's Known Exploited Vulnerabilities catalog, federal government software, and critical software defined by Executive Order 14028
•Non-prioritized CVEs are marked "Not Scheduled" but remain listed in the NVD without enrichment
•Organizations can request enrichment for specific CVEs via nvd@nist.gov
•NIST enriched 42,000 CVEs in 2025, 45% more than previously, but submissions continue accelerating
•Security experts recommend machine-speed vulnerability management approaches to handle the volume

This summary was automatically generated by AI based on the original article and may not be fully accurate.

NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions

Get the latest tech trends every morning

Endigest AI Core Summary

Related Articles

Advancing secret sync with workload identity federation

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation