Common Vulnerability Scoring System Archives

How CISA’s list of ‘must-patch’ vulnerabilities has expanded both in size, and who’s using it

While CISA says the catalog is catching on, some think it needs improvement.

Jun 9, 2022 By Tim Starks

CISA, DHS, Department of Homeland Security, RSA 2019 — The DHS and CISA booth at the 2019 RSA conference in San Francisco. (Scoop News Group photo)

CISA tells agencies to fix hundreds of software flaws, prep for future vulnerabilities

CISA wants agencies to tackle nearly 300 flaws in all, ranging from within two weeks to six months.

Nov 3, 2021 By Tim Starks

coding software hacking developing — (Getty Images)

In search of a B.S. filter for software bugs

Call it Yelp for software flaws, with more data and context thrown in.

Apr 15, 2020 By Sean Lyngaas

Cisco patches a perfect 10.0 ‘critical’ flaw in its popular security appliance

The company says two popular enterprise products have vulnerabilities that could allow an unauthenticated, remote attacker to execute code or cause a system reload.

Jan 29, 2018 By Patrick Howell O'Neill