Search CVE vulnerabilities by keyword. Returns CVE ID, description, severity, and CVSS score.

Retrieve detailed information about a specific CVE vulnerability including description, CVSS v3.1 base score and vector, EPSS exploitation probability score, CISA KEV (Known Exploited Vulnerabilities) status, affected products (CPE), and reference URLs. Use this when you have a specific CVE ID and need full details. To search for CVEs by product or severity, use cve_search instead. To find public exploits for a CVE, use exploit_lookup. For 5+ specific CVE IDs, use bulk_cve_lookup — 1 request vs N, avoids round-trip overhead. Returns JSON with fields: cve_id, description, cvss_score, cvss_vector, cvss_breakdown, epss (score + percentile), kev (boolean + due_date), affected_products, references, patch_available (bool), patch_url (string|null when available), and related_cves (list of {cve_id, severity, cvss_v3}, max 5, severity DESC). Read-only database lookup, no authentication required.

Search the CVE database with filters. Returns matching vulnerabilities with CVSS scores, EPSS exploit probability, and KEV status. Common queries: - Critical CVEs this week: severity=CRITICAL, published_after=<today-7d> - Actively exploited: kev=true - Most exploitable nginx CVEs: product=nginx, sort=epss_desc - Old nginx CVEs (2015-2018): product=nginx, published_after=2015-01-01, published_before=2018-12-31 - High-risk CVEs (EPSS>50%): epss_min=0.5, sort=epss_desc - XSS CVEs: cwe_id=CWE-79 - High-severity range: cvss_min=7.0, cvss_max=9.0 Returns: count (returned), total (matching), truncated (true = more pages available), next_offset (auto-computed — use as offset for next page, null if last page), query_echo (echo of parameters you sent), results array. Default limit is 50 (max 200). For a specific CVE ID, use cve_lookup. For 5+ specific CVE IDs from these results (or elsewhere), use bulk_cve_lookup — 1 request vs N, avoids round-trip overhead.

Fetch a specific CVE by its ID (e.g. "CVE-2021-44228"). Returns full details including description, severity, and affected products.

Get detailed use case information for a specific industry including common scenarios and pain points.

List software vendors ranked by vulnerability count. Returns the top 200 vendors with their total CVE counts. Use this when asked 'which vendors have the most vulnerabilities?' or to understand the threat landscape by vendor.