nist-nvd-mcp-server

nist-nvd-mcp-server

3.3

If you are the rightful owner of nist-nvd-mcp-server and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.

The NIST NVD MCP Server is a comprehensive Model Context Protocol server that provides access to the NIST National Vulnerability Database API, enabling AI agents to search, retrieve, and analyze vulnerability data.

The NIST NVD MCP Server is designed to facilitate seamless interaction with the National Institute of Standards and Technology's National Vulnerability Database (NVD). This server acts as a bridge for AI agents, allowing them to efficiently access and process vulnerability data from the authoritative U.S. government repository. With its robust set of features, the server supports advanced search capabilities, enabling users to filter vulnerabilities by various criteria such as keywords, severity, and Common Weakness Enumeration (CWE) identifiers. Additionally, it offers tools for tracking changes in vulnerability data, ensuring that users are always informed of the latest updates. The server is built with intelligent caching mechanisms to optimize performance and reduce unnecessary API calls, while also incorporating comprehensive error handling to ensure reliability. Its integration with AI agents is straightforward, making it an essential tool for cybersecurity professionals and researchers who require up-to-date vulnerability information.

Features

  • CVE Search & Retrieval: Advanced search with keyword, date, severity, and CWE filtering.
  • CPE-Based Searches: Find vulnerabilities affecting specific products and versions.
  • CVSS Analysis: Filter by CVSS v2/v3/v4 scores and severity ratings.
  • Change History Tracking: Monitor CVE modifications and analysis updates.
  • High-Priority Detection: Automated discovery of CISA KEV, CERT alerts, and critical CVEs.

Tools

  1. search_cves

    Search CVEs with comprehensive filtering options.

  2. get_cve

    Retrieve detailed information about a specific CVE.

  3. search_cves_by_cpe

    Find CVEs affecting specific products using CPE.

  4. search_cves_by_cvss

    Search CVEs by CVSS vector strings and severity.

  5. search_recent_cves

    Get recently published CVEs.

  6. search_modified_cves

    Get recently modified CVEs.

  7. get_cve_change_history

    Track CVE modification history.

  8. search_high_priority_cves

    Find high-priority CVEs using multiple risk indicators.