ZCyberNews
中文

#vulnerability-management

7 articles

This archive collects 19 articles tagged vulnerability-management published between April 12, 2026 and May 14, 2026, giving security teams a focused view of how this topic has appeared across ZCyberNews coverage. Observed actor references include Interlock, presented only where the underlying article metadata supports the attribution. The affected-scope signals emphasize financial services, government, and healthcare across Global, EU, and North america, helping readers compare exposure patterns without adding claims beyond the archive data. Severity coverage includes 1 critical, 7 high, 4 medium, and 7 informational reports.

NIST NVD Enrichment Change Creates CVSS Gap for 80% of CVEsMEDIUM
Industry News

NIST NVD Enrichment Change Creates CVSS Gap for 80% of CVEs

NIST now enriches only 15-20% of CVEs under new policy as of April 2026, leaving 80% without CVSS scores or product mappings.

3 min read
NIST Abandons Comprehensive NVD Analysis for Risk-Based PrioritizationINFORMATIONAL
Industry News

NIST Abandons Comprehensive NVD Analysis for Risk-Based Prioritization

NIST will no longer analyze all 263,000+ annual CVE submissions, shifting to a risk-based model to prioritize high-impact flaws as submissions surge 263% since 2020.

3 min read
AI-Powered Vulnerability Discovery Accelerates Exploit Timelines, StrainsHIGH
AI Security

AI-Powered Vulnerability Discovery Accelerates Exploit Timelines, Strains

Qualys warns that AI agents like Claude Mythos can cut vulnerability discovery time from months to hours, compressing the patch window and overwhelming security teams with a surge of new CVEs.

3 min read
Cloud Security Alliance Warns of AI Vulnerability Storm Post-MythosHIGH
AI Security

Cloud Security Alliance Warns of AI Vulnerability Storm Post-Mythos

The Cloud Security Alliance warns that Anthropic's Claude Mythos model will trigger an 'AI vulnerability storm,' forcing CISOs to manage a 10x surge in code flaws and novel exploit techniques within 18 months.

3 min read
Interlock Ransomware Exploits Cisco FMC Zero-Day in Global AttacksCRITICAL
Threat Intel

Interlock Ransomware Exploits Cisco FMC Zero-Day in Global Attacks

The Interlock ransomware group is actively exploiting a zero-day vulnerability in Cisco Firepower Management Center to breach networks. Recorded Future identified 31 high-impact flaws in March 2026, a 139% monthly increase.

3 min readInterlock
NIST Limits CVE Enrichment Amid Overwhelming Surge in SubmissionsINFORMATIONAL
Industry News

NIST Limits CVE Enrichment Amid Overwhelming Surge in Submissions

NIST will no longer fully analyze all CVEs submitted to the National Vulnerability Database, citing a 263% increase in submissions that has overwhelmed its enrichment process, leaving security teams with less context.

3 min read
NIST Overhauls National Vulnerability Database, Prioritizes High-Risk CVEINFORMATIONAL
Industry News

NIST Overhauls National Vulnerability Database, Prioritizes High-Risk CVE

NIST will cease comprehensive analysis for all CVEs, shifting to enrich only the highest-risk vulnerabilities due to a 263% surge in submissions, fundamentally altering how the security community uses the NVD.

3 min read

Stay Updated

Get the latest cybersecurity news delivered to your inbox.