Search everything...

Stats

Actions

Available In

Help us improve

Share bugs, ideas, or general feedback.

nist-nvd-mcp-server - Claude Code Plugin | ClaudePluginHub

Plugin

nist-nvd-mcp-server

Name: nist-nvd-mcp-server
Author: cyanheads

By cyanheads

Search and audit CVEs by keyword, severity, CWE, CISA KEV status, and CPE via the NIST National Vulnerability Database. STDIO or Streamable HTTP.

npx claudepluginhub cyanheads/cyanheads --plugin nist-nvd-mcp-server

Popularity

Stars

Above avg

Med: 0·Avg: 274

Installs

Med: 0·Avg: 1

What's Inside

Skills29

add-tool

/add-tool

Scaffold a new MCP tool definition. Use when the user asks to add a tool, create a new tool, or implement a new capability for the server.

api-auth

/api-auth

Authentication, authorization, and multi-tenancy patterns for `@cyanheads/mcp-ts-core`. Use when implementing auth scopes on tools/resources, configuring auth modes (none/jwt/oauth), working with JWT/OAuth env vars, or understanding how tenantId flows through ctx.state.

api-canvas

/api-canvas

DataCanvas primitive reference — a Tier 3 SQL/analytical workspace for tabular MCP servers, backed by DuckDB. Use when registering tables from upstream APIs, running ad-hoc SQL across them, and exporting results. Covers the acquire → register → query → export flow, the token-sharing pattern for multi-agent collaboration, env config, and Cloudflare Workers fail-closed behavior.

api-config

/api-config

Reference for core and server configuration in `@cyanheads/mcp-ts-core`. Covers env var tables with defaults, priority order, server-specific Zod schema pattern, and Workers lazy-parsing requirement.

api-context

/api-context

Canonical reference for the unified `Context` object passed to every tool and resource handler in `@cyanheads/mcp-ts-core`. Covers the full interface, all sub-APIs (`ctx.log`, `ctx.state`, `ctx.elicit`, `ctx.sample`, `ctx.progress`), and when to use each.

Stats

Version0.1.6

ReleasedMay 26, 2026

LanguageTypeScript

Stars1

MaintenanceExcellent

LicenseApache-2.0

Last CommitMay 26, 2026

AddedMay 27, 2026

Actions

View on GitHub View README Plugin Marketplace JSON

Own this plugin?

Verify ownership to unlock analytics, metadata editing, and a verified badge.

Available In

cyanheads

Help us improve

Share bugs, ideas, or general feedback.

README

@cyanheads/nist-nvd-mcp-server

Search and audit CVEs by keyword, severity, CWE, CISA KEV status, and CPE via the NIST National Vulnerability Database. STDIO or Streamable HTTP.

5 Tools • 1 Resource

Public Hosted Server: https://nist-nvd.caseyjhand.com/mcp

Tools

Five tools for vulnerability research, CPE auditing, and change tracking against the NIST NVD API 2.0:

Tool	Description
`nvd_search_cves`	Search CVEs by keyword, severity, CWE, date range, or CISA KEV status.
`nvd_get_cve`	Fetch one or more CVEs by ID — full CVSS scores, CWE, CPE configs, KEV fields, and references.
`nvd_search_cpes`	Search the NVD CPE dictionary by product keyword or partial match string.
`nvd_audit_cpe`	Find all CVEs affecting a specific product version by CPE name or virtual match string.
`nvd_get_cve_history`	Retrieve the change history for a CVE — score revisions, status transitions, and reference additions.

`nvd_search_cves`

The primary discovery tool for vulnerability surveillance and triage workflows.

Full-text keyword search across CVE descriptions (AND-semantics across words)
Severity filter by CVSS v2/v3/v4 label (LOW, MEDIUM, HIGH, CRITICAL)
CWE weakness filter (e.g., CWE-79, NVD-CWE-Other)
CISA KEV filter — limit results to known-exploited vulnerabilities
Convenience date shorthands: pubDays and lastModDays for "last N days" queries
Explicit ISO 8601 date range parameters (pubStartDate/pubEndDate, etc.) with 120-day max span
Auto-clamps convenience date params that exceed 120 days and reports clamped values in queryMeta
Pagination via limit (up to 2000) and offset
Results are always brief; call nvd_get_cve for full detail

`nvd_get_cve`

Fetch one or more CVEs by ID with full detail or brief summaries.

Batch up to 100 CVE IDs per call
Full mode: all CVSS scores across v2.0, v3.0, v3.1, and v4.0; CWE weaknesses; CPE configurations; CISA KEV fields; references
Brief mode (brief: true): ID, status, top severity, KEV name — recommended for batches larger than 10
includeReferences: false to strip the references array and reduce response size
Per-ID parity check: queryMeta.missingIds lists any requested IDs NVD didn't return

`nvd_search_cpes`

Look up product identifiers before auditing.

Keyword search (e.g., "apache http server", "openssl") or partial CPEv2.3 pattern
Returns full CPE name, human-readable title, deprecation status, and superseding CPEs
Pagination up to 10,000 entries — narrow the keyword when totalResults > returned
Use this before nvd_audit_cpe — CPE names are arcane strings; guessing audits the wrong product

`nvd_audit_cpe`

Full CVE audit for a specific product version.

View full README on GitHub

Help us improve

Find plugins for your project

Help us improve

nist-nvd-mcp-server

Popularity

What's Inside

Help us improve

Health & Quality

Confidence

README

@cyanheads/nist-nvd-mcp-server

Tools

`nvd_search_cves`

`nvd_get_cve`

`nvd_search_cpes`

`nvd_audit_cpe`

Similar Plugins

caveman

frontend-design

ui-design

claude-mem

nanobanana

marketing-skills

More by cyanheads

pubmed-mcp-server

clinicaltrialsgov-mcp-server

workflows-mcp-server

ntfy-mcp-server

@cyanheads/pubchem-mcp-server

@cyanheads/nist-nvd-mcp-server

Tools

`nvd_search_cves`

`nvd_get_cve`

`nvd_search_cpes`

`nvd_audit_cpe`