Search and analyze CVE vulnerabilities from National Vulnerability Database
Powered by NVD API 2.0: Free access to NIST National Vulnerability Database with latest CVE data.
Searching NVD database...
CVE (Common Vulnerabilities and Exposures) is a unique identifier for publicly known information-security vulnerabilities and exposures. Each CVE ID is unique and provides a reference to publicly disclosed vulnerability information.
CVSS (Common Vulnerability Scoring System) is a standardized method for rating vulnerability severity on a scale of 0.0-10.0. Higher scores indicate more severe vulnerabilities. CVSS V3 is the current standard used by most security organizations.
All CVE data comes from the National Vulnerability Database (NVD) maintained by NIST (National Institute of Standards and Technology). This is the official repository of U.S. vulnerability data and is regularly updated.
Severity levels indicate the potential impact: CRITICAL (9.0-10.0) - immediate action required, HIGH (7.0-8.9) - urgent attention, MEDIUM (4.0-6.9) - plan fixes, LOW (0.1-3.9) - low priority, NONE (0.0) - no impact.
The CVSS vector is a standardized notation that describes how the vulnerability can be exploited. It includes details about attack vector, attack complexity, privileges required, and user interaction needed.
Yes, completely free! Search unlimited CVEs with detailed information including CVSS scores, severity levels, weakness descriptions, and references. No registration or API key required.