🛡️ CVE Monitor · NVD · CISA KEV · EPSS

Monitor new and updated CVEs for the vendors and products you care about — enriched with CISA Known-Exploited flags and EPSS exploit-probability. Built for security & vulnerability-management teams.

⚡ What you get

Field	Description
cveId	CVE identifier
cvssScore / cvssSeverity	CVSS base score & severity
knownExploited	In CISA KEV (actively exploited)
epssScore	EPSS exploit-probability (0-1)
published / lastModified	Timeline
description / references	Summary + source links

🎯 Use cases

1. Vulnerability-management teams tracking their tech stack
2. Security vendors / MSSPs feeding alerting pipelines
3. Threat-intel analysts prioritising by KEV + EPSS
4. Compliance teams evidencing CVE monitoring

🚀 Sample inputs

{ "keywords": ["openssl","fortinet"], "sinceDays": 7, "maxPerKeyword": 20 }

{ "keywords": ["apache log4j"], "severityMin": "HIGH" }

📦 Sample output

{ "cveId": "CVE-2026-1234", "cvssScore": 9.8, "cvssSeverity": "CRITICAL", "knownExploited": true, "epssScore": 0.94, "published": "2026-06-01T00:00Z", "keyword": "openssl", "description": "..." }

📊 Sample Output

🛠 How it works

1. Source — official NVD CVE API 2.0 (services.nvd.nist.gov), no login.
2. Enrich — joins CISA KEV (known-exploited) + FIRST.org EPSS scores.
3. Filter — by keyword, look-back window, and minimum severity.
4. Schema — one row per CVE with prioritisation fields.
5. Fallback — rate-limit-aware; failed keywords are logged and skipped.

🔗 Related Actors

• Domain WHOIS Lookup
• SSL Certificate Checker
• Tech Stack Detector
• Email DMARC Auditor

💰 Pricing Example

Pay-per-event: $0.005 per run + $0.03 per CVE (cve-record).

Cves	Cost
100	~$3.00
500	~$15.01
2,000	~$60.01
Apify's $5 free credit covers ~166 CVEs. Start free →

⚖️ Legal & data sources

Data from public, official feeds: NVD (NIST), CISA KEV, and FIRST.org EPSS. Government/public-domain and openly-licensed sources; identified User-Agent; rate-limit-respecting.

❓ FAQ

How fresh? Live from NVD at run time; use sinceDays for the window. What is KEV? CISA's Known Exploited Vulnerabilities catalog — actively-exploited CVEs. What is EPSS? FIRST.org's probability a CVE will be exploited in the next 30 days. Do I need an API key? No. Can I filter severity? Yes — severityMin = LOW/MEDIUM/HIGH/CRITICAL. By product? Use keywords (vendor/product terms).

🆘 Troubleshooting

• Few results — widen sinceDays or broaden keywords.
• Rate-limited — the actor paces NVD calls; large keyword lists take longer.
• No EPSS for a CVE — EPSS may not score very new CVEs yet; field is null.
• Too noisy — set severityMin: "HIGH".

🏷️ About NexGenData

Structured public-data tools for analysts, developers, and operators. thenextgennexus.com.