THREAT OPS › Threat News › NIST NVD Enrichment Policy Change: Prioritizing Vulnerabilities with Attacker Behavior Signals
NIST NVD Enrichment Policy Change: Prioritizing Vulnerabilities with Attacker Behavior Signals
<p>As of April 15, 2026, <a href="https://www.nist.gov/news-events/news/2026/04/nist-updates-nvd-operations-address-record-cve-growth">NIST</a> enriches only CVEs that appear in the CISA Known Exploited Vulnerabilities catalog, federal government software, or software designated critical under Executive Order 14028. Everything else carries a "Lowest Priority" status: no CVSS score, no affected pro
MITRE ATT&CK techniques
- VulnerabilitiesT1588.006
Indicators of compromise
- https://www.nist.gov/news-events/news/2026/04/nist-updates-nvd-operations-address-record-cve-growthurl
- https://labs.cloudsecurityalliance.org/research/csa-research-note-nist-nvd-enrichment-policy-change-20260419/url
- https://jerrygamblin.com/2026/01/01/2025-cve-data-review/url
- https://dl.acm.org/doi/fullHtml/10.1145/3697090.3697109url
- https://play.goconsensus.com/ubf3a3558url
Original source: https://www.recordedfuture.com/blog/nist-nvd-enrichment