NIST Limits CVSS Ratings in NVD Database2. June 2026CybersecurityNIST will rate fewer vulnerabilities with CVSS scores itself and will increasingly rely on third-party sources to reduce a growing analysis backlog. Share on: