Privacy Policy

Introduction

KevDB (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and share information when you visit our website.

Information We Collect

Personal Information

We do not collect any personal information from users. KevDB is a static website that does not require user registration, login, or the submission of personal data.

Usage Data

We may collect non-personal information about how you interact with our website. This may include:

• Browser type and version
• Operating system
• Referrer URL
• Time and date of your visit
• Pages viewed

This data is typically collected through standard server logs or third-party analytics services (if applicable) to help us understand how our site is used and to improve its performance.

Cookies

We do not use cookies to track personal information and we do not use third-party services that use cookies.

Third-Party Links

Our website contains links to external websites, such as CISA, NVD, and other security resources. We are not responsible for the privacy practices or content of these third-party sites. We encourage you to review the privacy policies of any external sites you visit.

Data Sources

KevDB aggregates public data from the following sources:

• CISA (Cybersecurity and Infrastructure Security Agency): Known Exploited Vulnerabilities (KEV) catalog.
• NVD (National Vulnerability Database): CVSS scores and vulnerability details.
• EPSS (Exploit Prediction Scoring System): Exploit prediction scores.

We do not collect or modify personal data from these sources; we only display technical vulnerability information.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last updated” date.

Last updated: February 4, 2026