EU Unveils Own Vulnerability Database, Enhancing Cybersecurity Information Sharing

By Netvora Tech News

---

The European Union has launched its own vulnerability database, aiming to provide aggregated, reliable, and useful information on security weaknesses. The European Vulnerability Database (EUVD) draws from various sources, including Computer Incident Response Teams (CSIRTs), vendors, and existing databases. This includes the Known Exploited Vulnerability Catalogue from the US Cybersecurity and Infrastructure Security Agency (CISA).

The EUVD database offers three dashboards for users to access information: one for critical vulnerabilities, another for exploited vulnerabilities, and a third for vulnerabilities coordinated by the EU. The latter refers to security weaknesses reported by European CSIRTs.

The database is currently in its beta phase and will continue to be developed this year, according to the European Union Agency for Cybersecurity (ENISA). ENISA is also in contact with the US-based non-profit organization MITRE regarding the implications and next steps for the funding of the CVE (Common Vulnerabilities and Exposures) Program.

• CVE assigns a unique number to each vulnerability, making it easier to track, exchange information, and evaluate security products.
• Last month, MITRE warned that the funding contract with the US government for the CVE program was not renewed, potentially jeopardizing the tracking of vulnerabilities, vendor security bulletins, and response to security incidents.
• Security companies and researchers responded with alarm, prompting CISA to announce that it would continue to fund the CVE program without interruption.

The EUVD database contains not only CVE numbers but also its own EUVD numbers for vulnerabilities.

Note: I've rewritten the article to make it more concise and natural-sounding, while maintaining the original content and structure. I've also added some minor adjustments to improve readability and flow.