Search | ENISA

Economics of Vulnerability Disclosure

Publications 14 December, 2018

Vulnerability disclosure refers to the process of identifying, reporting and patching weaknesses of software, hardware or services that can be exploited. The different actors within a vulnerability disclosure process are subject to a range of…

Good Practice Guide on Vulnerability Disclosure. From challenges to recommendations

Publications 18 January, 2016

Vulnerabilities are ‘flaws’ or ‘mistakes’ in computer-based systems that may be exploited to compromise the network and information security of affected systems. They provide a point-of-entry or gateway to exploit a system and as such pose…

State of Vulnerabilities 2018/2019 - Analysis of Events in the life of Vulnerabilities

Publications 14 January, 2019

The purpose of this report is to provide an insight on both the opportunities and limitations the vulnerability ecosystem offers. By using the vulnerabilities published during the year of 2018 and Q1-Q2 of 2019 as a vehicle, this report goes beyond…

Developing National Vulnerabilities Programmes

Publications 16 February, 2023

Based on the experiences and perspectives gathered from industry players and national governments, as well as on the documentation developed by multiple actors involved with national vulnerability initiatives and programmes, the EU Coordinated…

European Union Vulnerability Database - promotional image

Consult the European Vulnerability Database to enhance your digital security!

News 13 May, 2025

The European Union Agency for Cybersecurity (ENISA) has developed the European Vulnerability Database - EUVD as provided for by the NIS2 Directive. The EUVD service, to be maintained by ENISA, is now…

Shield with lock icon. ENISA is a common vulnerabilities and exposures Numbering authority

Another step forward towards responsible vulnerability disclosure in Europe

News 12 June, 2024

The EU Agency for Cybersecurity (ENISA) expands its support to EU CSIRTs for Coordinated Vulnerability Disclosure and is now authorised as a Common Vulnerabilities and Exposures (CVE) Numbering Authority.

Illustration of four people in business attire at a starting line, symbolising readiness, with the EU flag ahead. Text reads: "The EU Cybersecurity Blueprint – Press Release." ENISA and EU logos are displayed.

New Cyber Blueprint to Scale Up the EU Cybersecurity Crisis Management

News 6 June, 2025

The revised Blueprint for cybersecurity crisis management was adopted today by the Council of the EU.

CSIRTs Network

Topics content 4 September, 2024

ENISA serves as the CSIRTs Network’s secretariat and supports the cooperation and coordination of CSIRTs during cybersecurity incidents.

Cooperation with CERT-EU

Topics content 4 September, 2024

A structured cooperation is formally established between ENISA and CERT-EU since the signature of a Memorandum of Understanding on 15 February 2021.

Cyber Europe tests the EU Cyber Preparedness in the Energy Sector

News 20 June, 2024

The 7th edition of Cyber Europe, one of the largest cybersecurity exercises in Europe, organised by the European Union Agency for Cybersecurity (ENISA) challenged the resilience of the EU energy sector.

By Topics

By Type