MITRE warns CVE program faces disruption amid U.S. funding uncertainty

The nonprofit MITRE Corporation says uncertainties around US government funding may lead to the disruption and “deterioration” of the Common Vulnerabilities and Exposures (CVE) program.

In a letter to the CVE board, VP and Director at MITRE’s Center for Securing the Homeland Yosry Barsoum said the contract with the US government to manage the program will expire on April 16 and there’s no word on funding moving forward.

“On Wednesday, April 16, 2025, the current contracting pathway for MITRE to develop, operate, and modernize CVE and several other related programs, such as CWE, will expire. The government continues to make considerable efforts to continue MITRE’s role in support of the program,” Barsoum explained.

Read more at Security Week