Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Office of Inspector General, U.S. Department of Commerce

An official website of the United States government

Report Fraud, Waste, and Abuse
Home » Audits and Evaluations

Audits and Evaluations

Home > Top Management Challenges > Evaluation of NIST ’s Management of the National Vulnerability Database

Evaluation of NIST ’s Management of the National Vulnerability Database

Date Issued May 26, 2026
Report Number OIG-26-020-I
Report Type Audits / Evaluations
Description

Our evaluation found that NIST’s management of the National Vulnerability Database has not been sufficient to resolve the backlog of unprocessed vulnerabilities or to keep pace with the growing volume of vulnerability submissions.
View Report OIG-26-020-I (SECURED)
View Announcement Audit-of-NISTs-Management-of-the-National-Vulnerability-Database
View Abstract OIG-26-020-I_Abstract (SECURED)
Privacy Policy | U.S. Department of Commerce | Accessibility | IG NET | FOIA | USA.gov | Vulnerability Disclosure Policy