CVE Myths versus Facts

Show Notes

Episode 9 – Three CVE Board members provide the truth and facts about the following myths about the CVE Program: 
 
 Myth #1: The CVE Program is run entirely by the MITRE Corporation
 Myth #2: The CVE Program is controlled by software vendors
 Myth #3: The CVE Program doesn’t cover enough types of vulnerabilities
 Myth #4: The CVE Program is responsible for assigning vulnerability severity scores 
 
 CVE Program – https://www.cve.org
 CVE Board – https://www.cve.org/ProgramOrganization/Board