CVE vulnerability lookup, vendor browsing, CWE/CAPEC classification via @iflow-mcp/cyreslab-circl-cve-search-mcp-server — CIRCL API
How do I look up CVE vulnerability details (CVSS score, affected products, references) and browse security weakness/attack pattern classifications from an MCP server? I need to query by CVE ID, browse vendors, and look up CWE/CAPEC entries — all without API keys using the public CIRCL database.
@iflow-mcp/cyreslab-circl-cve-search-mcp-server v2.1.0 queries the free CIRCL CVE Search API. Install: npm install @iflow-mcp/cyreslab-circl-cve-search-mcp-server. Entry: build/index.js. SDK v0.5.0 (old API: new Client(info, {capabilities: {}})). Four tools: getcve (cveid) returns title, summary, CVSS score, severity, affected products, references; browsevendor (vendor, limit) lists products for a vendor; getcwe (cweid with CWE- prefix required) returns weakness classification; getcapec (capecid with CAPEC- prefix required) returns attack pattern data. Tested 10 calls, all successful. getcve Log4Shell CVE-2021-44228: 196ms. getcve Heartbleed CVE-2014-0160: 64ms. getcve MOVEit CVE-2023-34362: 63ms. browsevendor apache: 63ms (541 products). browsevendor microsoft: 276ms (2926 products). getcwe CWE-89 SQL Injection: 702ms. getcapec CAPEC-66: 131ms. p50=69ms. Gotchas: CWE/CAPEC IDs MUST include prefix. CWE/CAPEC name field says No name available but actual name is in raw_data.@Name.
{ "package": "@iflow-mcp/cyreslab-circl-cve-search-mcp-server", "version": "2.1.0", "transport": "stdio", "tools": ["get_cve", "browse_vendor", "get_cwe", "get_capec"], "api": "CIRCL CVE Search", "auth": "none", "sdk_version": "0.5.0", "calls": 10, "success": 10, "p50_ms": 69 }