Search

By Topics

By Type

Published on

Economics of Vulnerability Disclosure

Publications

Vulnerability disclosure refers to the process of identifying, reporting and patching weaknesses of software, hardware or services that can be exploited. The different actors within a vulnerability disclosure process are subject to a range of…
National / EU authorities, Private Sector

Good Practice Guide on Vulnerability Disclosure. From challenges to recommendations

Publications

Vulnerabilities are ‘flaws’ or ‘mistakes’ in computer-based systems that may be exploited to compromise the network and information security of affected systems. They provide a point-of-entry or gateway to exploit a system and as such pose…
National / EU authorities, Private Sector

State of Vulnerabilities 2018/2019 - Analysis of Events in the life of Vulnerabilities

Publications

The purpose of this report is to provide an insight on both the opportunities and limitations the vulnerability ecosystem offers. By using the vulnerabilities published during the year of 2018 and Q1-Q2 of 2019 as a vehicle, this report goes beyond…
National / EU authorities, Private Sector

Developing National Vulnerabilities Programmes

Publications

Based on the experiences and perspectives gathered from industry players and national governments, as well as on the documentation developed by multiple actors involved with national vulnerability initiatives and programmes, the EU Coordinated…
National / EU authorities, Private Sector

Coordinated Vulnerability Disclosure Policies in the EU

Publications

This report analyses information and presents an overview of coordinated vulnerability disclosure (CVD) policies at the national level within the EU. Aside from offering a comprehensive overview of the EU CVD state of play, it also provides high-…
National / EU authorities, Private Sector
European Union Vulnerability Database - promotional image

Consult the European Vulnerability Database to enhance your digital security!

News

The European Union Agency for Cybersecurity (ENISA) has developed the European Vulnerability Database - EUVD as provided for by the NIS2 Directive. The EUVD service, to be maintained by ENISA, is now…

National / EU authorities, Private Sector

ENISA Threat Landscape for 5G Networks Report

Publications

This report is an update of the ENISA 5G Threat Landscape, published in its first edition in 2019. This document is a major update of the previous edition. It encompasses all novelties introduced, it captures developments in the 5G architecture and…
National / EU authorities, Private Sector
ENISA Threat Landscape - Finance Sector Publication Cover

ENISA Threat Landscape: Finance Sector

Publications

This is the first analysis conducted by the European Union Agency for Cybersecurity (ENISA) of the cyber threat landscape of the European finance sector. From January 2023 to June 2024, the European financial sector faced significant…

National / EU authorities, Private Sector
Shield with lock icon. ENISA is a common vulnerabilities and exposures Numbering authority

Another step forward towards responsible vulnerability disclosure in Europe

News

The EU Agency for Cybersecurity (ENISA) expands its support to EU CSIRTs for Coordinated Vulnerability Disclosure and is now authorised as a Common Vulnerabilities and Exposures (CVE) Numbering Authority.

National / EU authorities, Private Sector
ENISA Space Threat Landscape

From Cyber to Outer Space: A Guide to Securing Commercial Satellite Operations

News

The European Union Agency for Cybersecurity (ENISA) explores the cybersecurity threat landscape of space to strengthen the resilience of commercial satellites.

National / EU authorities, Private Sector