Security · 15h ago
NIST Cuts CVE Enrichment, Hurting Vulnerability Coverage
NIST has reduced the number of CVEs it enriches with detailed analysis, aiming to streamline operations. However, researchers find the move has led to gaps in coverage and accuracy for vulnerability data. The change impacts how security teams prioritize and respond to threats.
Meridian48 take
While NIST's intent to focus resources is understandable, the reduction in enrichment risks leaving critical vulnerabilities under-analyzed, potentially weakening the entire CVE ecosystem.
nistcve-enrichment