NVD MCP Server

MCPOpen SourceMIT36.5

by marcoeg • Security & Privacy

An MCP server that lets agents query the NIST National Vulnerability Database (NVD) via its API to fetch CVE details and search vulnerabilities.

Example Use Cases

1
Fetch detailed vulnerability information for a specific CVE ID (scores, weaknesses, references) to support security triage and reporting.
2
Search the NVD by keyword or exact phrase to discover related CVEs and aggregate results for threat analysis.
3
Real-time or interactive access to NVD queries (via SSE or stdio) to integrate vulnerability lookups into assistant workflows or monitoring dashboards.

Description

This server exposes NVD data through the Model Context Protocol, providing tools to retrieve CVE records by ID and to search the NVD by keyword. It supports both stdio and Server-Sent Events (SSE) transports for real-time or interactive clients and is compatible with MCP-compliant hosts like Claude Desktop. An NVD API key is required to use the service, and the project includes Docker, development, and testing instructions for local or containerized deployments.

Quick Actions

View on GitHub

Security

Scanned 3 month(s) ago

Risk Level

MINIMAL

Read-only data retrieval, no side effects

Trust Score

D44/100

4/17 checks passed

Scores are informational only and provided “as is” without warranty. AgentHotspot assumes no liability for actions taken based on these ratings.

Quick Stats

Service TypeMCP

Pricing ModelFree

Capabilities0 Tools / 0 Prompts / 0 Resources

Ownermarcoeg

CategorySecurity & Privacy

DependenciesStandalone