Vulnerability database goes live

The Open Source Vulnerability Database (OSVDB), which was developed to catalog and describe the Internet's security vulnerabilities, has opened for public use.

Created by members of the security community, the goal of the OSVDB is "to provide accurate, detailed, current, and unbiased technical information" about security vulnerabilities, according to the organization's Web site. The OSVDB project was launched in 2002 because at that time there was no independent, community-operated vulnerability database in existence, according to a statement on the project's Web site.

The vulnerability databases that did exist were managed by private interests and designed to meet their needs, according to the statement.

The OSVDB group said it wants to promote greater, more open collaboration between companies and individuals, eliminate redundant work and reduce the costs associated with the development and maintenance of in-house vulnerability databases.

"OSVDB organizers believe that more than one vulnerability database is needed to meet the full variety of community requirements," according to the group's statement. "While it references the other vulnerability databases, it develops its own database entries to ensure that there are no restrictions on distribution and re-use of the OSVDB vulnerability data: its contents are free of cost and free of restrictions on use."

Join the newsletter!

Error: Please check your email address.
Have an opinion on security? Want to have your articles published on CSO? Please contact CSO Content Manager for our guidelines.
Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Linda Rosencrance

Latest Videos

More videos

Blog Posts