The Cybersecurity and Infrastructure Security Agency extended its contract for the MITRE-backed Common Vulnerabilities and Exposures Program late Tuesday night, following industry alarm sparked earlier in the day when the non-profit warned of an imminent end to federal backing for the cornerstone cybersecurity program that is relied on worldwide.