vuln-trend

vulnerability trend & reporting console
0
Severities in trend
Charts shown

No data yet

Head to Import / Data to load your first vulnerability snapshot.

Import a snapshot

Accepts CSV or JSON. Expected fields (any casing/spacing): cveid, severity, cvss, epss, priority, exploited, asset/host count, published, vendor, software, description. Missing fields are fine — severity and priority can be derived, and CVSS/EPSS/exploited status can be enriched below.

Click to choose a file or drag & drop a CSV / JSON snapshot here

Loaded snapshots0

NVD enrichment

Provide an NVD API key to enrich CVEs missing CVSS, published date, or vendor/software — and to check each CVE against the CISA Known Exploited Vulnerabilities catalog (via NVD's cisaExploitAdd field). Without a key, requests are limited to ~5 per 30s. EPSS is pulled from FIRST.org and needs no key. Your data and key stay in your browser — nothing is sent anywhere except directly to nvd.nist.gov and api.first.org.

Priority scoring model

When priority isn't supplied on import, it's computed from a 0–100 score:
40% CVSS · 30% EPSS · 20% known-exploited · 10% asset exposure
≥70 Critical · ≥50 High · ≥30 Medium · below Low. Existing priority values from your import are always respected.