NVD CVE Vulnerability Search

Trust Score 80/100

Search the NVD for CVEs by ID or keyword, retrieve CVSS scores, CWE info, affected configurations and remediation references to support audits, incident respons

triggers:search nvdlookup cveget_cvesearch_cvevulnerability scancve lookupcvss

GitHub SKILL.md

What it does

This skill lets the agent query the National Vulnerability Database (NVD) to find CVE records by identifier or by keyword/version. It returns structured CVE details — CVSS v3/v2 scores, severity, vector strings, CWE identifiers, exploitability/impact metrics, references (vendor advisories, patches, exploits), and affected CPE configurations — enabling rapid vulnerability lookups, triage, and reporting. The skill provides two primary operations: get_cve for exact CVE lookups and search_cve for broader keyword or version searches.

When to use it

Use this skill during security audits, post-scan enrichment, incident response when a CVE ID is cited, upgrade planning to compare exposures across versions, or fleet-wide vulnerability sweeps. It is valuable when you have a software/version string from show version or inventory data and want to map known CVEs to deployed devices.

What's included

Scripts: The skill contains examples showing how to call get_cve and search_cve through the MCP call wrapper (no separate scripts/dir present in this repo snapshot).
References: None listed in the skill package, but the skill maps directly to NVD APIs and standard CVE artifacts.
Instructions: Procedural workflow for extracting versions, searching for matching CVEs, pulling details for high/critical findings, correlating exposure with running config, and producing an audit report.

Compatible agents

Best used with agents that can run shell/python MCP calls (OpenClaw/agentic environments) and have network/API access to NVD and any required API keys.

Audit Summary

NVD CVE search skill for looking up vulnerabilities by ID or keyword via the National Vulnerability Database. No bundled scripts — relies on external MCP_SCRIPT and MCP_CALL env vars for tool invocation. Well-documented with clear workflows for vulnerability auditing, CVSS severity mapping, and fleet-wide scanning. Targets network engineers doing security audits on Cisco IOS-XE/NX-OS devices.

Watch Out

Requires NVD_MCP_SCRIPT and MCP_CALL env vars to be set
NVD_API_KEY env var recommended but not strictly required (rate-limited without it)

Notes

Clean skill — no security concerns. Uses official NVD API. Architecture is flat (no scripts/ or references/ dirs), all logic lives in SKILL.md as shell command templates. Useful for network security audits but niche audience.

Information

Repository: netclaw
Stars: 528
Installs: 0

Trust Score

Overall80

Security95

Code Quality72

Architecture55

Usefulness70

More from netclaw

GNS3 Packet Capture

Start/stop packet captures on GNS3 links and retrieve PCAP files or live stream URLs for analysis.

Aruba CX System Discovery

Discovery skill to query Aruba CX switches for system info, firmware versions, and VSF topology via MCP server tools.

Catalyst Center Client Operations

Network operations skill for querying Catalyst Center: list and count wired/wireless clients, lookup client details by MAC/IP, analyze band distribution and tim

Draw.io Network Diagrams

Generate editable Draw.io (.drawio) network diagrams and export high-quality PNG/SVG/PDF with embedded XML, or open diagrams in a browser editor via an MCP serv

ServiceNow Change Workflow

ITSM-guided network change lifecycle: create and gate Change Requests, run pre-checks, execute via pyats-config-mgmt, verify post-change, record audit trail.

GNS3 Node Operations

Manage GNS3 lab devices: create from templates, start/stop/suspend/reload nodes and get console access for troubleshooting.

pyATS Network Security Audit

Automated network device security audit using pyATS: checks ACLs, AAA, CoPP, routing protocol security, SNMP, encryption, and produces a prioritized findings re

Related Skills

Reverse Engineer

Provides step-by-step guidance and best practices for binary reverse engineering: static analysis, dynamic tracing, disassembly, and documentation workflows for

Sandbox0 Integration

Guidance and templates for integrating Sandbox0 sandboxing into AI agents — CLI/SDK patterns, templates, volumes, network policy, and deployment choices.

OpenTestAI

Automated, high-confidence AI testing: bug detection, persona feedback, and prioritized test-case generation using many specialized tester profiles.

CTF Write-up Generator

Generate a concise, reproducible submission-style CTF writeup with a one-path solution script, metadata, and a short checklist for fast verification.

Minimal Run & Audit (repro reporting)

Execute a README-first smoke test and produce standardized reproducibility outputs (`repro_outputs/`) and PATCHES.md — trusted reporting for repo reproduction r

Skill Issue — Skill Auditor

Scan and audit installed agent skills to produce a health report covering inventory, usage, dependency checks, version status, and actionable recommendations.

GRC & Compliance (ServiceNow)

Guides Governance, Risk & Compliance (GRC) work in ServiceNow: policies, controls, risk records, audits and ES5 script examples for automating GRC workflows.

Azure External Attack Surface Management

Provides expert guidance for Azure External Attack Surface Management (EASM): quotas, configuration, integrations, and exporting inventory to analytics platform

Back to Skills