Skip to main content
Glama

Mallory MCP Server

Official
by malloryai
GitHub
Python
MIT License
5
OverviewInspectNewSchemaRelated ServersReviewsScore
Need Help?View Source CodeReport Issue

get_vulnerabilities

Discover, search, and analyze vulnerabilities by CVE ID, description, or technology. Filter by severity, sort by CVSS or EPSS scores, and generate reports on vulnerability trends or statistics.

Instructions

Get vulnerabilities

Use this tool when you need to search or browse multiple vulnerabilities, such as when:

  • Discovering recently added vulnerabilities in the database
  • Searching for vulnerabilities by keywords in their descriptions
  • Finding all vulnerabilities related to a specific technology
  • Creating reports on vulnerability trends or statistics
  • Looking for high-severity vulnerabilities based on CVSS or EPSS scores

Args: filter (str, optional): A string used to filter vulnerabilities. It can start with specific prefixes: * cve:: Filter by CVE ID. * uuid:: Filter by UUID. * desc:: Filter by description. * If the filter string matches the pattern CVE- or a UUID pattern, it will be treated as a specific filter. * If no prefix is provided, it defaults to a description filter. Defaults to "". offset (int, optional): The number of items to skip before starting to collect the result set. Defaults to 0. limit (int, optional): The maximum number of items to return. Minimum value is 1. Defaults to 10 (API default is 100). sort (str, optional): Field to sort by - either 'cve_id', 'created_at', 'updated_at', 'cvss_3_base_score', 'epss_score', or 'epss_percentile'. Defaults to 'created_at'. order (str, optional): Sort order - either 'asc' or 'desc'. Defaults to 'desc'.

Returns: Dict[str, Any]: Dictionary containing: - total: Total number of vulnerabilities matching the filter criteria - offset: Current pagination offset - limit: Number of items returned per page - message: Status message (usually null when successful) - data: List of vulnerability records, each containing: - uuid: Unique identifier for the vulnerability - cve_id: The CVE identifier - description: Detailed description of the vulnerability - created_at/updated_at: Timestamps for record creation and updates - cvss_base_score: Severity score (if available) - cvss_version: Version of the CVSS scoring system used - cvss_vector: Detailed scoring vector - cvss_data: Additional CVSS scoring information - epss_score: Exploit Prediction Scoring System score - epss_percentile: Percentile ranking of the EPSS score - cisa_kev_added_at: Date added to CISA's Known Exploited Vulnerabilities catalog - gen_description/gen_name: Generated content (if available)

Input Schema

NameRequiredDescriptionDefault
filterNo
limitNo
offsetNo
orderNodesc
sortNocreated_at

Input Schema (JSON Schema)

{ "properties": { "filter": { "default": "", "title": "Filter", "type": "string" }, "limit": { "default": 10, "title": "Limit", "type": "integer" }, "offset": { "default": 0, "title": "Offset", "type": "integer" }, "order": { "default": "desc", "title": "Order", "type": "string" }, "sort": { "default": "created_at", "title": "Sort", "type": "string" } }, "title": "get_vulnerabilitiesArguments", "type": "object" }
Install Server

Other Tools from Mallory MCP Server

Related Tools

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/malloryai/mallory-mcp-server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server