“The CVE program suffers from many single points of failures: managed by the USA (not 24/7) hence a CVE ID cannot be delivered fast. CISA analysts backlog and [don’t] have enough time and understanding of the system’s complexity to properly analyze reports; thus, publish poor quality content.”

Authors

• Person: Not available Organization: arXiv
  A Mixed-Methods Study of Open-Source Software Maintainers On ...

Sources

• A Mixed-Methods Study of Open-Source Software Maintainers On ... arxiv.org arXiv via serper

Referenced by nodes (2)

• U.S. location
• CISA entity