Wednesday, September 07, 2005

National Vulnerability Database

The National Institute of Standards and Technology (NIST) has created the National Vulnerability Database, which gives systems administrators a place to go to find out about system vulnerabilities and how to work with them. From the web site:
NVD is a comprehensive cyber security vulnerability database that integrates all publicly available U.S. Government vulnerability resources and provides references to industry resources. It is based on and synchronized with the CVE vulnerability naming standard.
You can search by keyword or, by clicking on Advanced Search, browse by vendor or product. Limiting factors include date, severity, type of exploit, type of impact, type of vulnerability, resource. There are 2 RSS feeds for those that want to keep up without remembering to come back to the NVD web site. One tracks all recent vulnerabilities; the other tracks only fully analyzed vulnerabilities. FYI: This database is sponsored by the Department of Homeland Security's National Cyber Security Division. [from be Specific]

No comments: