Common CVE Reference Tags

CVEs which reference external content often have tags associated with those references. These tags on our website are pulled both from the CVE data and structured from our own analysis. An ongoing list of the most common tags and their descriptions is below. Issue Tracking: Notes a webpage that has been established for ongoing discoveries… Continue reading Common CVE Reference Tags

Postmarket Management of Cybersecurity in Medical Devices

Contains Nonbinding Recommendations Guidance for Industry andFood and Drug Administration Staff This guidance represents the current thinking of the Food and Drug Administration (FDA or Agency) on this topic. It does not establish any rights for any person and is not binding on FDA or the public. You can use an alternative approach if it… Continue reading Postmarket Management of Cybersecurity in Medical Devices

Toward a “Periodic Table” of Bugs

How Can I Really Tell What’s Wrong With My Code? Common Nomenclature Common Weakness Enumeration (CWE)A “dictionary” of every class of bug or flaw in softwareMore than 600 distinct classes, e.g., buffer overflow, directory traversal, OS injection, race condition, cross-site scripting, hardcoded password, and insecure random  Common Vulnerability Enumeration (CVE) A list of instances of… Continue reading Toward a “Periodic Table” of Bugs

Categorized as NIST