CYRUSX
Sign in

Tool

CVE Lookup

Search the NIST National Vulnerability Database by CVE ID or keyword.

Search by CVE ID (e.g. CVE-2021-44228) or keyword (e.g. apache, openssl, log4j, windows smb)

Live Feed

Recently Published CVEs

About

What is a CVE?

A CVE (Common Vulnerabilities and Exposures) is a publicly disclosed security vulnerability assigned a unique identifier by MITRE and scored by the NIST National Vulnerability Database. CVE IDs follow the format CVE-YEAR-NUMBER (e.g. CVE-2021-44228, the Log4Shell vulnerability).

Each CVE is scored using the Common Vulnerability Scoring System (CVSS), which rates severity from 0.0 to 10.0. Scores above 9.0 are Critical, 7.0–8.9 are High, 4.0–6.9 are Medium, and below 4.0 are Low. CVSS v3.1 is the current standard.

Security teams use CVE lookups to assess whether software they run is affected by known vulnerabilities, prioritize patching, and respond to threat intelligence reports that reference specific CVE IDs.

Severity Scale

CVSS Score Reference

Critical9.0 – 10.0
High7.0 – 8.9
Medium4.0 – 6.9
Low0.1 – 3.9
None0.0