KEVDB is a community project dedicated to providing information security professionals with enriched data to combat modern threats.
Security teams are often overwhelmed by the volume of vulnerabilities. Standard CVSS scores provide technical severity, but often lack the context of real-world exploitation.
KEVDB bridges this gap. By consolidating CISA's catalog of exploited vulnerabilities with EPSS predictive metrics and detailed CVSS data, this project provides a unified view of actual risk.
Unifying fragmented intelligence sources into a single, high-performance searchable platform.
Adding critical metadata like EPSS and Ransomware status to standard legacy CVE data.
Turning abstract numbers into actionable risk matrices for rapid decision making.
Ensuring information can be searched at lightning speed.
Data sourced from CISA, FIRST, and NIST NVD.
We synchronize with CISA and FIRST (EPSS) once a day. Individual CVE records reflect the latest known state from these authoritative sources.
Use our scanner tool to instantly identify the vulnerabilities that pose the greatest risk.