CVE-Search MCP Server

MCPOpen SourceMIT52.7

by roadwy • Identity & Access

An MCP server that exposes the CVE-Search API to agents, providing vendor/product lists, CVE lookups, and latest vulnerability feeds as JSON.

Example Use Cases

1
List all vendors and products from the CVE-Search dataset for inventory or mapping tasks.
2
Retrieve detailed JSON for a specific CVE ID (including CAPEC, CWE, and CPE expansions) to assess or annotate vulnerabilities.
3
Fetch the latest updated CVEs and database metadata to keep threat intelligence and scanning tools up to date.

Description

This is a Model Context Protocol (MCP) server that wraps the CVE-Search API to deliver vulnerability data (vendors, products, CVE details, and recent CVEs with CAPEC/CWE/CPE expansions) in JSON for automated agents. It is implemented in Python and intended to be run locally via uv for integration with MCP-capable clients. The server simplifies querying and browsing CVE-Search data programmatically, making it easier for agents to consume up-to-date vulnerability information and database metadata.

Quick Actions

View on GitHub

Security

Scanned 2 month(s) ago

Risk Level

MINIMAL

Read-only data retrieval, no side effects

Trust Score

D44/100

4/17 checks passed

Scores are informational only and provided “as is” without warranty. AgentHotspot assumes no liability for actions taken based on these ratings.

Quick Stats

Service TypeMCP

Pricing ModelFree

Capabilities0 Tools / 0 Prompts / 0 Resources

Ownerroadwy

CategoryIdentity & Access

DependenciesStandalone