Search | ENISA

Developing National Vulnerabilities Programmes

Publications 16 February, 2023

Based on the experiences and perspectives gathered from industry players and national governments, as well as on the documentation developed by multiple actors involved with national vulnerability initiatives and programmes, the EU Coordinated…

State of Vulnerabilities 2018/2019 - Analysis of Events in the life of Vulnerabilities

Publications 14 January, 2019

The purpose of this report is to provide an insight on both the opportunities and limitations the vulnerability ecosystem offers. By using the vulnerabilities published during the year of 2018 and Q1-Q2 of 2019 as a vehicle, this report goes beyond…

Economics of Vulnerability Disclosure

Publications 14 December, 2018

Vulnerability disclosure refers to the process of identifying, reporting and patching weaknesses of software, hardware or services that can be exploited. The different actors within a vulnerability disclosure process are subject to a range of…

Online Tracking and User Protection Mechanisms

Publications 18 January, 2018

ENISA decided to provide a study on online tracking and relevant user protection mechanisms, paying particular attention to user consent, privacy settings and the implementation of the Do-Not-Track (DNT) standard.

Good Practice Guide on Vulnerability Disclosure. From challenges to recommendations

Publications 18 January, 2016

Vulnerabilities are ‘flaws’ or ‘mistakes’ in computer-based systems that may be exploited to compromise the network and information security of affected systems. They provide a point-of-entry or gateway to exploit a system and as such pose…

A promotional graphic for European Cyber Security Month (October) by ENISA. The image features cartoon illustrations of diverse people using technology.

Off the Hook - Don't be Phished this Cybersecurity Month!

News 1 October, 2025

October is European Cybersecurity Month, ENISA and the European Commission join forces to promote cybersecurity awareness to help you navigate digital services securely. This year attention is drawn to phishing, the primary method for initial…

European Vulnerability Database

Tools 10 September, 2025

Visual with an attention sign and logos of ENISA, European Commission, and CERT-EU, with the text: 'Joint statement – Assessment and advice on Microsoft SharePoint Server.'

Joint Statement on SharePoint vulnerabilities - Assessment and advice on recovery and mitigating actions

News 22 July, 2025

The European Commission, the EU Agency for Cybersecurity (ENISA), the Cybersecurity Service for the Union institutions, bodies, offices and agencies (CERT-EU), and the network of the EU CSIRTs, are closely…

European Union Vulnerability Database - promotional image

Consult the European Vulnerability Database to enhance your digital security!

News 13 May, 2025

The European Union Agency for Cybersecurity (ENISA) has developed the European Vulnerability Database - EUVD as provided for by the NIS2 Directive. The EUVD service, to be maintained by ENISA, is now…

Promoting security in the digital world during the European Cybersecurity Month

News 30 September, 2024

This year’s campaign theme is social engineering, a prevalent cybersecurity threat in the digital landscape.

By Topics

By Type