Create a central database of known software vulnerabilities. This will allow consumers to know what products and services are affected, and help developers fix vulnerable code. Software security research firms typically publish their findings publicly and have a unique vulnerability identifier attached to their work.
There may be inconsistency between software vulnerability databases operated by different organisations.
Government-owned vulnerability databases may be biased in the security interests of that state.
The data from these databases are technical in nature and aren’t accessible by the average consumer.