The apparent increase in CVE numbers was probably due to the creation of a large number of "legacy" CVEs for issues that predate 2007, but I'm not sure how NVD generates its numbers. Initial CVE analysis suggests that there was a decline in 2007 disclosures, but we have not finished our analysis yet.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/newsbriefs/675/2359#2359