Get CVSS and current EPSS score for a specific CVE.
## What this tool does
Returns a full risk snapshot for a CVE, including:
- CVSS version
- CVSS base score
- CVSS severity
- CVSS vector string
- human-readable explanation of the CVSS vector
- current EPSS score
The field **`cvss_explain`** provides a natural-language interpretation of the CVSS vector (attack conditions, privileges, user interaction, impact breakdown).
Example:
For `CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H`, the explanation may read:
*"The vulnerability can be exploited remotely over the network with low complexity,
without authentication and without user interaction. Exploitation may lead to high
impact on confidentiality, high impact on integrity, and high impact on availability."*
## When to use this tool
Use this tool when the user asks:
- "What is the CVSS/EPSS of this CVE?"
- "Explain the CVSS vector of this vulnerability."
- "What is the severity and why?"
- "Give me the risk profile for this CVE."
For EPSS historical trends, use `epss_timeseries`.
## Inputs
- **cve_id**: valid CVE identifier (`CVE-YYYY-NNNNN`).
## Outputs
- `cvss_version`
- `cvss_base_score`
- `cvss_base_severity`
- `cvss_vector_string`
- `cvss_explain` - human-readable explanation of the CVSS vector
- `epss_score`
## LLM usage guidelines
- Never guess CVSS or EPSS values—always call this tool.
- Use the `cvss_explain` field directly when the user wants an interpretation of the vector string.
- If multiple CVEs are referenced, call the tool once per CVE.
- Combine this tool with `sightings_search` or `ssvc_calculator` for more complete risk assessments.