Everything Totally Explained


Ask & we'll explain, totally!
Common Vulnerabilities and Exposures
Totally Explained

  NEW! All the latest news in the worlds of computer gaming, entertainment, the environment,  
finance, health, politics, science, stocks & shares, technology and much, much, more.  

View this entry using RSS

Everything about Common Vulnerabilities And Exposures totally explained

Common Vulnerabilities and Exposures, or CVE, is a dictionary of publicly-known information security vulnerabilities and exposures. This dictionary is maintained by MITRE Corporation, and is funded by the National Cyber Security Division of the United States Department of Homeland Security.

CVE Identifiers

As per (External Link), CVE Identifiers (also called "CVE names," "CVE numbers," "CVE-IDs," and "CVEs") are unique, common identifiers for publicly known information security vulnerabilities. CVE identifiers and be either in "entry" or "candidate" status. Entry status indicates that the CVE Identifier has been accepted to the CVE List while candidate status (also called "candidates," "candidate numbers," or "CANs") indicates that the identifier is under review for inclusion in the list.
   The same source describes the process of creating a CVE Identifier which
  • begins with the discovery of a potential security vulnerability or exposure
  • to this information is then assigned a (unique) CVE candidate number by a CVE Candidate Numbering Authority (CNA), posted on the CVE Web site, and proposed to the Board by the CVE Editor
The MITRE Corporation functions as Editor and Primary CNA. The CVE Editorial Board (created by MITRE) discusses the candidate and votes on whether or not it should become a CVE entry. If the candidate is rejected, the reason for rejection is noted in the Editorial Board Archives posted on the CVE Web site. If the candidate is accepted, its status is updated to "entry" on the CVE List. However, the assignment of a candidate number isn't a guarantee that it'll become an official CVE entry.
   It is best to acquire a CAN number early in its investigation. An entry is live once a number is assigned, however until the go-public date is reached, the CAN number's entry won't provide any information. It will instead show a placeholder to indicate the number is taken. The benefit to early CVE candidacy is that all future correspondence can refer to the CAN/CVE number.

Further Information

Get more info on 'Common Vulnerabilities And Exposures'.


External Link Exchanges

Do you know how hard it is to get a link from a large encyclopaedia? Well we're different and will prove it. To get a link from us just add the following HTML to your site on a relevant page:

    <a href="http://common_vulnerabilities_and_exposures.totallyexplained.com">Common Vulnerabilities and Exposures Totally Explained</a>

Then simply click through this link from your web page. Our crawlers will verify your link, extract the title of your web page and instantly add a link back to it. If you like you can remove the words Totally Explained and embed the link in article text.
   As long as your link remains in place, we'll keep our link to you right here. Please play fair - our crawlers are watching. Your site must be closely related to this one's topic. Any kind of spamming, dubious practises or removing the link will result in your link from us being dropped and, potentially, your whole site being banned.



Copyright © 2007-8 totallyexplained.com | Licensed under the GNU Free Documentation License | Site Map
This article contains text from the Wikipedia article Common Vulnerabilities and Exposures (History) and is released under the GFDL | RSS Version