The National Vulnerability Database (NVD) at NIST, the National Institute of Standards and Technology, is currently offline after malware was discovered on two NIST web servers, according to a report in The Register. The NVD is a US Government repository of vulnerability information in SCAP format. The details of the infection come from a mail received by Kim Halavakoski, who had mailed NIST when he noticed the site was down
Adobe's ColdFusion web development software is to blame for the downtime of the US Government's National Vulnerability Database.
The malware infected two servers, and caused the National Institute for Standards and Technology to take the NVD database and other US government sites offline on Friday.