Nick Andersen, CISA’s new executive assistant director for cybersecurity, has outlined a renewed vision to modernize and strengthen the Common Vulnerabilities and Exposures (CVE) program following a critical funding scare in 2025 that nearly disrupted its operations. The CVE program, operated by MITRE under government sponsorship, is essential for identifying and cataloging cybersecurity vulnerabilities globally. After its contract with MITRE almost lapsed in April 2025, jeopardizing continuity, CISA extended funding temporarily. Andersen emphasized transitioning the CVE program from a growth era to a quality-focused era that prioritizes data accuracy, responsiveness, and trust. His vision includes modernizing IT infrastructure, increasing automation and API support, raising minimum standards for vulnerability records, expanding multi-sector and international partnerships, and exploring diversified funding alongside sustained government investment. Additionally, Andersen highlighted CISA’s role as an impartial cybersecurity provider committed to keeping CVE data freely accessible. Concurrently, CISA is organizing an AI Hackathon to foster AI-driven cybersecurity tools, reinforcing its mission to safeguard U.S. critical infrastructure and advance global cyber defense.