TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Flashpoint

National Vulnerability Database (NVD) Shifts to Selective Enrichment as CVE Volume Surges

Flashpoint · 2026-04-17 · Read original ↗

ATT&CK techniques detected

3 predictions
T1588.006Vulnerabilities
79%
"full risk landscape nvd ’ s updated model focuses enrichment on a defined set of criteria, including known exploited vulnerabilities and software relevant to federal systems. these categories represent important segments of risk, but they do not encompass the full set of vulnerab…"
T1588.006Vulnerabilities
77%
"##tion consistent enrichment that can be integrated into operational workflows this level of detail supports faster and more accurate decision - making in environments where both volume and speed are increasing. flashpoint ’ s vulnerability intelligence model is built to address …"
T1588.006Vulnerabilities
60%
"clear that its role is narrowing at a time when disclosure volume and prioritization demands are increasing. at the same time, the role of vulnerability intelligence is expanding. security teams need access to data that supports prioritization, not just identification. they need …"

Summary

Under a new model announced by the National Institute of Standards and Technology, NVD will no longer enrich every CVE. Instead, enrichment efforts will focus on a defined subset, including vulnerabilities in the CISA KEV catalog, software used by the federal government, and software designated as critical.

The post National Vulnerability Database (NVD) Shifts to Selective Enrichment as CVE Volume Surges appeared first on Flashpoint.