Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status
NVD contains:

Last updated: 9/17/2014 11:35:19 PM

CVE Publication rate: 26.13

Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index
Vulnerability Workload Index: 8.55
About Us
NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security's National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).
Security Content Automation Protocol (SCAP) 1.2 Product Validation Record
Validation Record Number 128
Vendor: Red Hat®, Inc.
Product Name: OpenSCAP
Product Major Version: 1.0.8
Product Version Tested: 1.0.8-1.el5_10
Tested Platforms:
SCAP 1.2 Capabilities: Vendor Provided SCAP Information
Dates tested: 1/1/2013 - 4/1/2014
Report Submission Date: 4/17/2014
DTR Version: NIST IR 7511 Revision 3
Validation Test Suite Version:
Previous Validation (SCAP and Product Version): None
NVLAP Lab: 200658-0 - ATSEC
Validation Date: April 17, 2014
Comments: Exceptions were granted for validation tests that contained bugs which were subsequently fixed in version 1-2.0.2.0 of the validation test suite. The validation test content change log version 1-2.0.2.0 contains the complete list.