CVE Editorial Board
The CVE Editorial Board includes numerous information security-related organizations including commercial security tool vendors, members of academia, research institutions, government agencies, and other prominent security experts. Through open and collaborative discussions, the Board identified the vulnerabilities or exposures to be included in the CVE List, and oversees the ongoing assignment of new entries.
The MITRE Corporation created the CVE Editorial Board, moderates Board discussions, and provides guidance throughout the process to ensure that CVE serves the public interest. Archives of Board meetings and discussions are available for review on the CVE Web site. Other information security experts will be invited to participate on the Board on an as-needed basis based upon recommendations from Board members. See "Process for Adding New Members to the Editorial Board."
CVE Editorial Board roles and tasks vary by member. Some Board members participate actively in different Board functions. Other members act as observers or liaisons with other areas in the security community. See "CVE Editorial Board Roles, Tasks, and Qualifications."
Review the Email Discussion List & Meetings Archive.
Intrusion Detection Experts
Lightspeed Technologies, Inc.
Other Security Experts
National Security Agency (NSA)
Adam Shostack (Emeritus)
Cisco Systems, Inc.
Computer Associates International, Inc.
nCircle Network Security, Inc.
Red Hat, Inc.
Sun Microsystems, Inc./Oracle, Inc.
Network Security Analysts
Academic / Educational
UC Davis (University of California, Davis)
Incident Response Teams
CERT/CC (Software Engineering Institute, Carnegie Mellon University)
National Institute of Standards and Technology (NIST)
Open Source Vulnerability Database (OSVDB)
Risk Based Security, Inc.
Steve Christey (Moderator)
MITRE Web Site
The individuals listed below are former members of the CVE Editorial Board. We thank them for contributions, especially those with "Emeritus" status who have made particularly significant contributions to the CVE Initiative.