techtimes

NIST National Vulnerability Database Severity Scores Wrong 88% of Time, Inspector General Finds

The federal database that security teams worldwide consult to decide which software flaws to patch first produces severity scores that are wrong nearly 88% of the time — and the government watchdog ...
CSO Online

US government report slams NIST for NVD backlog

NIST’s lack of strategic planning and decisive action have allowed the backlog of unprocessed vulnerabilities to continue ...

CVSS: NIST restricts evaluation of IT security vulnerabilities

The US NIST operates the NVD vulnerability database. The backlog of analyses is large, and the Inspector General's criticism ...
Infosecurity-magazine.com

NIST Drops NVD Enrichment for Pre-March 2026 Vulnerabilities

The team behind the US National Vulnerability Database (NVD) can’t keep up with the explosion of new reported vulnerabilities, said a top official of the US National Institute of Standards and ...
MSN on MSN

Mandiant just confirmed 28% of new vulnerabilities are now weaponized within 24 hours of disclosure — outrunning almost every patch cycle in the world

In May 2026, most enterprise IT teams still measure their patch cycles in days or weeks. Attackers, according to ...