search_cves_by_cpe
Identify vulnerabilities in products by providing a CPE name or match string, with options to filter by version range and vulnerable status.
Instructions
Find CVEs affecting specific products using Common Platform Enumeration (CPE)
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| cpeName | No | CPE name (e.g., "cpe:2.3:a:apache:log4j:2.14.1:*:*:*:*:*:*:*") | |
| versionEnd | No | Ending version for range search (requires virtualMatchString) | |
| isVulnerable | No | If true with cpeName, only return CVEs where the CPE is vulnerable | |
| versionStart | No | Starting version for range search (requires virtualMatchString) | |
| resultsPerPage | No | Number of results per page (1-2000, default: 20) | |
| versionEndType | No | Whether versionEnd is inclusive or exclusive | |
| versionStartType | No | Whether versionStart is inclusive or exclusive | |
| virtualMatchString | No | CPE match string for broader searches (e.g., "cpe:2.3:a:apache:*") |