Common Vulnerabilities and Exposures

Common Vulnerabilities and Exposures ( CVE  - German  Common vulnerabilities and exposures ) is an industry standard , which aims to introduce a uniform naming convention for security holes and other vulnerabilities in computer systems. Multiple names of the same dangers by different companies and institutions are supplemented by a sequential number (e.g. CVE-2006-3086) to ensure that the vulnerability is clearly identified. This enables a smooth exchange of information between the various databases of individual manufacturers.

The CVE numbers have been assigned since 1999. Until the end of 2013, the consecutive numbers of a year were always four-digit and with a leading zero, such as CVE-2007-0014. Because this format was no longer sufficient, the format has allowed any number of digits since the beginning of 2014, but at least four.

The list of Common Vulnerabilities and Exposures is maintained by Miter Corporation in cooperation with the CVE Numbering Authorities (security experts, educational institutions, authorities and manufacturers of security software) etc.

See also

• Common Vulnerability Scoring System (CVSS)
• Exploit

Web links

• cve.mitre.org  - Official website

Individual evidence

1. ↑ Description of the CVE format
2. ↑ About CVE (accessed January 3, 2016)
3. ^ CVE Numbering Authorities