A community-driven registry for the Claude Code ecosystem. Not affiliated with Anthropic.
Are you the author? Sign in to claim
MCP Server for Vulnerabilities API from NVD NIST
A Model Context Protocol (MCP) server for querying NIST National Vulnerability Database (NVD) API endpoints.
This MCP server exposes tools to query the NVD/CVE REST API and return formatted text results suitable for LLM consumption via the MCP protocol. It includes automatic query chunking for large date ranges and parallel processing for improved performance.
Base API docs: https://nvd.nist.gov/developers/vulnerabilities
get_temporal_context - Get current date and temporal context for time-relative queries
search_cves - Search CVE descriptions by keyword with flexible date filtering
keyword, resultsPerPage (default: 20), startIndex (default: 0), last_days (recent_days has been deprecated), start_date, end_datestart_date and end_date parametersstart_date/end_date → last_days → default 30 daysget_cve_by_id - Retrieve detailed information for a specific CVE
cve_idcves_by_cpe - List CVEs associated with a Common Platform Enumeration (CPE)
cpe_name (full CPE 2.3 format required), is_vulnerable (optional)kevs_between - Find CVEs added to CISA KEV catalog within a date range
kevStartDate, kevEndDate, resultsPerPage (default: 20), startIndex (default: 0)cve_change_history - Retrieve change history for CVEs
cve_id OR (changeStartDate + changeEndDate), resultsPerPage (default: 20), startIndex (default: 0)get_temporal_context tool for accurate time-relative querieslast_days) and absolute (start_date/end_date) date rangesservices.nvd.nist.gov)# Clone and build
git clone https://github.com/HaroldFinchIFT/vuln-nist-mcp-server
cd vuln-nist-mcp-server
docker build -t vuln-nist-mcp-server .
# Run
docker run --rm -it vuln-nist-mcp-server
Environment variables:
NVD_BASE_URL: Base URL for NVD API (default: https://services.nvd.nist.gov/rest/json)NVD_VERSION: API version (default: /2.0)NVD_API_TIMEOUT: Request timeout in seconds (default: 10)Get temporal context for time-relative queries:
Tool: get_temporal_context
Params: {}
Search recent CVEs (relative time):
Tool: search_cves
Params: {
"keyword": "Microsoft Exchange",
"resultsPerPage": 10,
"last_days": 7
}
Search CVEs with absolute date range:
Tool: search_cves
Params: {
"keyword": "buffer overflow",
"start_date": "2024-01-01T00:00:00",
"end_date": "2024-03-31T23:59:59"
}
Search CVEs for "this year" (use get_temporal_context first):
# First, get temporal context
Tool: get_temporal_context
# Then use the provided date mappings
Tool: search_cves
Params: {
"keyword": "remote code execution",
"start_date": "2025-01-01T00:00:00",
"end_date": "2025-09-17T12:00:00"
}
Get CVE details:
Tool: get_cve_by_id
Params: {"cve_id": "CVE-2024-21413"}
Check CPE vulnerabilities:
Tool: cves_by_cpe
Params: {
"cpe_name": "cpe:2.3:a:microsoft:exchange_server:2019:*:*:*:*:*:*:*",
"is_vulnerable": "true"
}
Find recent KEV additions:
Tool: kevs_between
Params: {
"kevStartDate": "2024-01-01T00:00:00.000Z",
"kevEndDate": "2024-03-31T23:59:59.000Z"
}
vuln-nist-mcp-server/
├── Dockerfile
├── glama.json
├── LICENSE
├── nvd_logo.png
├── README.md
├── requirements.txt
├── SECURITY.md
└── vuln_nist_mcp_server.py
mcpuser)MIT - see LICENSE file for details
get_temporal_context tool for temporal awareness and time-relative queriessearch_cves now supports absolute date ranges with start_date and end_date parametersrecent_days parameter in search_cves (use last_days instead)Run Claude Code as an MCP server so any agent can delegate coding tasks to it
Browser automation using accessibility snapshots instead of screenshots
English-first Korean equity intelligence MCP — DART filings, foreign-holder 5%-rule flows, activist filings, KRX news. F
Unity MCP acts as a bridge between AI assistants and your Unity Editor. Give your LLM tools to manage assets, control sc
