# CVE Intelligence API -- NIST NVD Vulnerability Data for AI Agents

Query the NIST National Vulnerability Database for CVE details, search by keyword, or monitor recent disclosures. Returns normalized CVSS scores, affected products, CISA Known Exploited Vulnerabilities flags, and CWE weakness IDs.

This product uses the NVD API but is not endorsed or certified by the NVD.

## API Base URL

https://cve.hugen.tokyo

## Endpoints

- GET /cve/lookup?id=CVE-2021-44228 -- Full CVE details with CVSS, affected products, CISA KEV status ($0.01)
- GET /cve/search?keyword=log4j -- Search CVEs by keyword, sorted by severity ($0.01)
- GET /cve/recent?days=7 -- Recent CVEs in the last N days, sorted by severity ($0.01)

## Parameters

### /cve/lookup
- id (required): CVE identifier (e.g. CVE-2021-44228)

### /cve/search
- keyword (required): Search term (e.g. log4j, apache, buffer overflow)
- limit (optional): Max results, 1-50 (default: 20)

### /cve/recent
- days (optional): Look-back window in days, 1-120 (default: 7)
- severity (optional): Filter by minimum severity -- CRITICAL, HIGH, MEDIUM, LOW
- limit (optional): Max results, 1-100 (default: 20)

## Response Fields

- id: CVE identifier
- description: English vulnerability description
- cvss.score: CVSS base score (0.0-10.0)
- cvss.severity: CRITICAL / HIGH / MEDIUM / LOW
- cvss.attack_vector: NETWORK / ADJACENT_NETWORK / LOCAL / PHYSICAL
- cvss.attack_complexity: LOW / HIGH
- affected_products[]: vendor, product, version_ranges
- weaknesses[]: CWE IDs
- cisa_kev: Present if CISA lists this as known exploited (date_added, action_due, required_action)

## Use Cases

- Vulnerability lookup: "What is CVE-2021-44228 and how severe is it?"
- Security research: "Find all CVEs related to Apache HTTP Server"
- Threat monitoring: "What critical CVEs were published this week?"
- Patch prioritization: "Which recent CVEs are known-exploited per CISA?"
- Tech stack audit: "Check if log4j vulnerabilities affect my versions"