MCP VERIFIED · PRODUCTION READY · VINKIUS GUARANTEED

NIST NVD MCP Server

Name: NIST NVD
Availability: InStock
Author: Vinkius

nvd.nist.gov

Built by Vinkius GDPR ToolsFree for Subscribers

Access authoritative vulnerability and product data via NIST NVD — track CVEs, CPEs, and security history directly from your AI agent.

Get MCP Server for AI Agents

Ask AI about this MCP Server

Open in ChatGPT Open in Claude Open in Perplexity

Vinkius supports streamable HTTP and SSE.

AI Agent→Vinkius

High Security·Kill Switch·Plug and Play

Fully ManagedVinkius Servers

60%Token savings

High SecurityEnterprise-grade

IAMAccess control

EU AI ActCompliant

DLPData protection

V8 IsolateSandboxed

Ed25519Audit chain

<40msKill switch

Stream every event to Splunk, Datadog, or your own webhook in real-time

* Every MCP server runs on Vinkius-managed infrastructure inside AWS - a purpose-built runtime with per-request V8 isolates, Ed25519 signed audit chains, and sub-40ms cold starts optimized for native MCP execution. See our infrastructure

What is the NIST NVD MCP Server?

The NIST NVD MCP Server gives AI agents like Claude, ChatGPT, and Cursor direct access to NIST NVD via 10 tools. Access authoritative vulnerability and product data via NIST NVD — track CVEs, CPEs, and security history directly from your AI agent. Powered by the Vinkius - no API keys, no infrastructure, connect in under 2 minutes.

Built-in capabilities (10)

get_cpe_by_idget_cve_by_idget_cve_change_historylist_cpe_matchessearch_cpe_by_keywordsearch_cve_by_cpesearch_cve_by_cwesearch_cve_by_datesearch_cve_by_keywordsearch_cve_by_severity

Tools for your AI Agents to operate NIST NVD

Ask your AI agent "Get the details for CVE-2023-23397." and get the answer without opening a single dashboard. With 10 tools connected to real NIST NVD data, your agents reason over live information, cross-reference it with other MCP servers, and deliver insights you would spend hours assembling manually.

Works with Claude, ChatGPT, Cursor, and any MCP-compatible client. Powered by the Vinkius - your credentials never touch the AI model, every request is auditable. Connect in under two minutes.

Why teams choose Vinkius

One subscription gives you access to thousands of MCP servers - and you can deploy your own to the Vinkius Edge. Your AI agents only access the data you authorize, with DLP that blocks sensitive information from ever reaching the model, kill switch for instant shutdown, and up to 60% token savings. Enterprise-grade infrastructure and security, zero maintenance.

Build your own MCP Server with our secure development framework →

Vinkius works with every AI agent you already use

…and any MCP-compatible client

NIST NVD MCP Server capabilities

10 tools

get_cpe_by_id

Get CPE dictionary entry by UUID

get_cve_by_id

g. CVE-2023-1234). Get CVE details by ID

get_cve_change_history

Retrieve CVE change history

list_cpe_matches

List valid CPE match strings

search_cpe_by_keyword

Search product dictionary by keyword

search_cve_by_cpe

Find CVEs for a product (CPE)

search_cve_by_cwe

g. CWE-89). Find CVEs by weakness (CWE)

search_cve_by_date

Search CVEs by publication date

search_cve_by_keyword

Search CVEs by keyword

search_cve_by_severity

Filter CVEs by severity

What the NIST NVD MCP Server unlocks

Connect to the National Vulnerability Database (NVD) API through your AI agent and explore the world's most comprehensive archive of cybersecurity vulnerabilities and product data using natural conversation.

What you can do

CVE Discovery — Search for Common Vulnerabilities and Exposures (CVEs) by ID, keyword, or specific weakness (CWE).
Product Security — Find all vulnerabilities associated with a specific product or version using its Common Platform Enumeration (CPE) string.
Severity Analysis — Filter vulnerabilities based on their CVSS V3 severity level (Low to Critical) to prioritize risks.
Temporal Tracking — Search for CVEs published or modified within specific date ranges to monitor recent threats.
Product Dictionary — Query the official CPE dictionary by keyword or UUID to identify software and hardware products.
Change History — Retrieve a detailed log of updates and modifications made to the vulnerability database.

How it works

1. Subscribe to this server
2. (Optional) Enter your NIST NVD API Key for higher rate limits
3. Start exploring vulnerability intelligence from Claude, Cursor, or any MCP client

Who is this for?

Security Researchers & Analysts — quickly retrieve CVE details or CVSS scores for risk assessment and mitigation.
DevOps & IT Teams — monitor for new vulnerabilities affecting the specific products and versions in your stack.
Compliance Officers — automate the gathering of vulnerability data for security audits and reporting.

Frequently asked questions about the NIST NVD MCP Server

Is an API Key mandatory?

No. The NVD API allows public access without a key. However, using a key increases your rate limit significantly (up to 50 requests per 30 seconds).

What is a CPE string?

CPE (Common Platform Enumeration) is a structured naming scheme for information technology systems, software, and packages (e.g., cpe:2.3:a:microsoft:exchange_server:2019).

How far back can I search for vulnerabilities?

The NVD contains vulnerabilities dating back to the late 1990s. You can search the entire database by ID or keyword.

More in this category

Particle IoT

8 tools

Access Particle IoT devices via API — read sensor variables, control device functions, manage devices, and publish events from any AI agent.

NOAA Aviation — Airport Weather Intelligence

5 tools

Aviation weather data worldwide: METARs (current airport conditions), TAFs (24-hour airport forecasts), PIREPs (pilot reports of turbulence and icing), and SIGMETs/AIRMETs (significant aviation hazards) from the Aviation Weather Center.

Wolfram Alpha

5 tools

Solve math, science, and engineering queries with computational intelligence.

NOAA Climate — Historical Weather Records

5 tools

Historical climate data from the planet's largest weather archive: GHCN-Daily temperature and precipitation records, monthly and yearly summaries, 30-year climate normals, and station search from NOAA's National Centers for Environmental Information.