Vulnerability Lookup
Overview
Vulnerability Lookup aggregates vulnerability data from multiple sources. Its integration with OpenCTI brings comprehensive CVE data with CVSS scoring to the platform, enhancing vulnerability management and prioritization.
Vulnerability Lookup is a free and open-source service provided by CIRCL (Computer Incident Response Center Luxembourg) that aggregates and correlates vulnerability data from multiple sources including CVE, NVD, and various advisories. It provides a unified API to query vulnerability information with enriched metadata.
The Vulnerability Lookup connector imports CVE records from the Vulnerability Lookup API into OpenCTI as STIX Vulnerability objects, including CVSS v3.1 and v4.0 scoring, CWE references, and external references. It supports incremental imports based on the last update date, ensuring efficient synchronization of vulnerability data.