Vulnerability cyber

NIST

Mar 25, 2025 1 min read
NIST

In March 2025, the National Institute of Standards and Technology (NIST) confronts a deepening crisis with a growing backlog of unprocessed Common Vulnerabilities and Exposures (CVEs) in the National Vulnerability Database (NVD), crucial for national cybersecurity. Despite consistent processing rates, a 32 percent increase in CVE submissions in 2024 has overwhelmed capabilities, leading to projections of over 30,000 unanalyzed vulnerabilities by early 2025. This backlog jeopardizes organizations depending on NVD for timely vulnerability management, as it hinders access to vital data for threat prioritization. The situation is exacerbated by discontinued funding support from CISA and inadequate measures to counter the submission surge, putting immense pressure on NIST to revolutionize their processing methods to curtail escalating risks to the cybersecurity infrastructure.

Source: https://cybersecuritynews.com/nist-struggling-to-clear-the-growing-backlog-of-cves/

TPRM report: https://scoringcyber.rankiteo.com/company/jobs

"id": "job353032525",
"linkid": "jobs",
"type": "Vulnerability",
"date": "3/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Cybersecurity',
                        'location': 'United States',
                        'name': 'National Institute of Standards and '
                                'Technology (NIST)',
                        'type': 'Government Agency'}],
 'date_detected': 'March 2025',
 'description': 'In March 2025, the National Institute of Standards and '
                'Technology (NIST) confronts a deepening crisis with a growing '
                'backlog of unprocessed Common Vulnerabilities and Exposures '
                '(CVEs) in the National Vulnerability Database (NVD), crucial '
                'for national cybersecurity. Despite consistent processing '
                'rates, a 32 percent increase in CVE submissions in 2024 has '
                'overwhelmed capabilities, leading to projections of over '
                '30,000 unanalyzed vulnerabilities by early 2025. This backlog '
                'jeopardizes organizations depending on NVD for timely '
                'vulnerability management, as it hinders access to vital data '
                'for threat prioritization. The situation is exacerbated by '
                'discontinued funding support from CISA and inadequate '
                'measures to counter the submission surge, putting immense '
                'pressure on NIST to revolutionize their processing methods to '
                'curtail escalating risks to the cybersecurity infrastructure.',
 'impact': {'operational_impact': 'Backlog of unprocessed CVEs',
            'systems_affected': 'National Vulnerability Database (NVD)'},
 'post_incident_analysis': {'corrective_actions': 'Revolutionize processing '
                                                  'methods',
                            'root_causes': 'Increase in CVE submissions, '
                                           'Discontinued funding support from '
                                           'CISA'},
 'recommendations': 'Revolutionize processing methods',
 'response': {'recovery_measures': 'Revolutionize processing methods'},
 'title': 'NIST NVD Backlog Crisis',
 'type': 'Operational Backlog',
 'vulnerability_exploited': 'Increase in CVE submissions'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.