The post (currently AND previous to comments being moved here from a different H... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		transpute 8 months ago \| parent \| context \| favorite \| on: CVE program faces swift end after DHS fails to ren... The post (currently AND previous to comments being moved here from a different HN thread) links to the official _2024_ (not 2025) statement about NVD cutbacks. Here's a 3000 word article with quotes from Linux Foundation and commercial vendors, around the same time, https://news.ycombinator.com/item?id=43700884

RVuRnvbM2e 8 months ago [–]

NVD != CVE

transpute 8 months ago | [–]

NIST owns the budget for both NVD and CVE, contracting MITRE to operate the CVE program.

NIST budget was cut 12% in FY 2024 (Oct 2023 - Sep 2024).

An earlier bill to supplement NIST funding has been reintroduced in 2025, https://fedscoop.com/public-private-partnerships-bill-nist-h...

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact