Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Projects Vulnerability Disclosure Guidelines

Vulnerability Disclosure Guidelines

News and Updates

Federal Vulnerability Disclosure Guidelines: NIST SP 800-216
May 24, 2023
Internal and external reporting of security vulnerabilities in software and information systems owned or utilized by the Federal Government is critical to mitigating risk, establishing a robust security posture, and...
Draft Recommendations for Federal Vulnerability Disclosure Guidelines
June 7, 2021
NIST invites comments on Draft NIST Special Publication (SP) 800-216, "Recommendations for Federal Vulnerability Disclosure Guidelines." The public comment period is open through August 9, 2021.

Contacts

Vulnerability disclosure inquiries
[email protected]

Created February 04, 2021, Updated May 07, 2025