CVE-Search MCP Server

by roadwy

Security CVE vulnerability security API CVE-Search

A Model Context Protocol (MCP) server for querying the CVE-Search API. This server provides comprehensive access to CVE-Search, allowing users to browse vendors and products, get CVEs per CVE-ID, and retrieve the last updated CVEs.

View on GitHub

Last updated: N/A

What is CVE-Search MCP Server?

CVE-Search MCP Server is a Model Context Protocol server that acts as an interface to the CVE-Search API. It allows users to easily query and retrieve vulnerability information.

How to use CVE-Search MCP Server?

Clone the repository. 2. Install dependencies using uv sync. 3. Configure your MCP client (e.g., VS Code with Cline/Roo Code) by adding the server configuration and modifying the path to the repository.

Key features of CVE-Search MCP Server

Get a JSON with all the vendors
Get a JSON with all the products associated with a vendor
Get a JSON with all the vulnerabilities per vendor and a specific product
Get a JSON of a specific CVE ID
Get a JSON of the last 30 CVEs including CAPEC, CWE and CPE expansions
Get information about the current databases in use and when it was updated

Use cases of CVE-Search MCP Server

Security researchers looking for vulnerability information
Software developers wanting to check for vulnerabilities in their dependencies
System administrators needing to stay up-to-date on the latest security threats
Automated vulnerability scanning and reporting

FAQ from CVE-Search MCP Server

What is CVE-Search?

CVE-Search is a vulnerability search engine and database.

What is MCP?

MCP stands for Model Context Protocol, used for communication between tools.

What are the requirements for running this server?

Python 3.10+, uv, and a Cline/Roo Code compatible MCP client.

How do I install the dependencies?

Use the command uv sync in the repository directory.

Where can I find more information about CVE-Search?

Refer to https://github.com/cve-search/cve-search