search_cves
Search the NIST CVE database to identify cybersecurity vulnerabilities by keyword, severity, product, weakness type, or date range. Filter results to focus on CISA Known Exploited Vulnerabilities for targeted threat analysis.
Instructions
Search the NVD CVE database. Supports keyword, CVSS severity, CPE product, CWE weakness type, and date range filters. Set has_kev=True for only CISA Known Exploited Vulnerabilities. Results include CVE ID, description, severity, and score. May take 6+ seconds without an NVD API key due to rate limiting.
Input Schema
TableJSON Schema
| Name | Required | Description | Default |
|---|---|---|---|
| keyword | No | Keyword search across CVE descriptions, e.g. 'Apache Log4j' | |
| severity | No | CVSS v3 severity: CRITICAL, HIGH, MEDIUM, or LOW | |
| cpe_name | No | CPE 2.3 product name, e.g. 'cpe:2.3:a:apache:log4j:*' | |
| cwe_id | No | CWE weakness ID, e.g. 'CWE-79' | |
| pub_start | No | Publication start date in ISO 8601, e.g. '2024-01-01T00:00:00.000' | |
| pub_end | No | Publication end date in ISO 8601, e.g. '2024-12-31T23:59:59.999' | |
| has_kev | No | If True, only return CVEs that are in the CISA KEV catalog | |
| limit | No | ||
| offset | No |