Security

NIST NVD MCP Server

Chat with AI and run tools instantly.

The NIST National Vulnerability Database (NVD) is the U.S. government repository of standards-based vulnerability management data. Search CVEs, check CVSS scores, find known exploited vulnerabilities, and track vulnerability changes.

Managed
8 tools
Agent guide included

Chat with AI and run tools instantly.

Browse all tools

AI Skill
SKILL.md

Domain knowledge for NIST NVD — workflow patterns, data models, and gotchas for your AI agent.

NIST NVD

The NIST National Vulnerability Database is the U.S. government repository of vulnerability data. Search CVEs, check CVSS scores, find known exploited vulnerabilities. No account or API key is required from the user — MCPBundles supplies platform access.

Data Model

  • CVE discovery — fetch by id, full-text style search, or structured filters (severity bands, CPE strings, CWE families).
  • Operational feeds — CISA known-exploited catalog mirrors, recently published CVEs, and per-CVE modification history.

Gotchas

  • Responses are paginated; tight filters (date window, CPE, severity) keep large CVE pulls manageable.
  • NVD returns oldest CVEs first unless you pass a days_back window on search tools.

Tools in this Server (8)

Cve By Cpe

Find CVEs affecting a specific product using its exact CPE name from the NVD database. CPE format: cpe:2.3:part:vendor:product:version:*:*:*:*:*:*:* w...

Cve By Severity

Search the NIST NVD for CVEs by CVSS v3 severity (LOW, MEDIUM, HIGH, CRITICAL) with optional keyword and recency filters. Use keyword_search to narrow...

Cve By Weakness

Search the NIST NVD for CVEs by CWE weakness type with optional severity and recency filters. Common CWE IDs: CWE-79 (XSS), CWE-89 (SQL Injection), CW...

Cve History

Get the complete change history for a specific CVE from the NIST NVD. Shows when and how the CVE was modified — including analysis updates, CVSS chang...

Cve Kev

Get CVEs in the CISA KEV catalog with full NVD CVSS scoring details. These are actively exploited vulnerabilities federal agencies must remediate. Use...

Cve Lookup

Look up a specific CVE by its ID from the NIST National Vulnerability Database. Returns full details including CVSS scores, description, affected prod...

Cve Recent

Get recently published or modified CVEs from the NIST NVD. Defaults to the last 7 days of modified CVEs. Use pub_or_mod to switch between filtering by...

Cve Search

Search the NIST NVD for CVEs by keyword with optional severity and recency filters. Combine keyword + cvss_v3_severity + days_back for targeted querie...

Frequently Asked Questions

What is the NIST NVD MCP server?

The NIST National Vulnerability Database (NVD) is the U.S. government repository of standards-based vulnerability management data. Search CVEs, check CVSS scores, find known exploited vulnerabilities, and track vulnerability changes. It provides 8 tools that AI agents can use through the Model Context Protocol (MCP).

How do I connect NIST NVD to my AI agent?

Add the MCPBundles server URL to your MCP client configuration (Claude Desktop, Cursor, VS Code, etc.). The URL format is: https://mcp.mcpbundles.com/bundle/nist-nvd. Authentication is handled automatically.

How many tools does NIST NVD provide?

NIST NVD provides 8 tools that can be called by AI agents, along with a SKILL.md that gives your AI agent domain knowledge about when and how to use them.

What authentication does NIST NVD require?

NIST NVD uses open data APIs — no authentication required.

Setup Instructions

Connect NIST NVD to any MCP client in minutes

MCP URL
https://mcp.mcpbundles.com/bundle/nist-nvd

One-click install:

The link prefills the Add custom connector dialog — you still review the values and click Add, then Connect to complete OAuth.

Or add manually

  1. Open claude.ai → Settings → Connectors.
  2. Click the + button and choose Add custom connector.
  3. Set Name to NIST NVD and paste the MCP URL into Remote MCP server URL.
  4. Click Add. NIST NVD will appear under Not connected — select it and click Connect to complete OAuth.
Name: NIST NVD
Remote MCP server URL: https://mcp.mcpbundles.com/bundle/nist-nvd
Authentication: OAuth

Custom connectors at claude.ai require a paid Claude plan (Pro, Max, Team, or Enterprise).

Try NIST NVD now

No API key or third-party login required. Chat with AI and run tools instantly.

NIST NVD MCP Server & Skill