HEXL
Catalog/dev-cve-for-product

Developer

CVEs for a product (NVD search) API

Search NVD by vendor/product keyword and return recent CVEs normalized into one schema (id, severity, CVSS score, vector, summary, dates, references), re-sorted by CVSS severity so the most dangerous issue leads — a product-wide view that complements the single-ID security/cve lookup. Answers 'recent CVEs for log4j', 'vulnerabilities in openssl', 'most severe CVEs for this product', 'NVD search by product name'.

Price$0.01per request
MethodPOST
Route/v1/dev/cve-for-product
StatusLive
MIME typeapplication/json
Rate limit60/minute
Cache3600s public
devcvenvdvulnerabilitiesproductcvsssecurityadvisories
API URLhttps://x402.hexl.dev/v1/dev/cve-for-product
Integration docs
Example request
{
  "query": "apache log4j",
  "limit": 5
}
Example response
{
  "query": "apache log4j",
  "totalResults": 42,
  "returned": 5,
  "severityCounts": {
    "CRITICAL": 2,
    "HIGH": 2,
    "MEDIUM": 1,
    "LOW": 0,
    "NONE": 0
  },
  "highestSeverity": "CRITICAL",
  "cves": [
    {
      "id": "CVE-2021-44228",
      "severity": "CRITICAL",
      "cvssScore": 10,
      "cvssVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
      "summary": "Apache Log4j2 JNDI remote code execution (Log4Shell).",
      "published": "2021-12-10T10:15:09.143",
      "lastModified": "2023-11-07T03:40:00.000",
      "references": [
        "https://logging.apache.org/log4j/2.x/security.html"
      ]
    }
  ]
}
Input schema
{
  "type": "object",
  "required": [
    "query"
  ],
  "properties": {
    "query": {
      "type": "string",
      "examples": [
        "apache log4j"
      ]
    },
    "limit": {
      "type": "number",
      "default": 20,
      "examples": [
        20
      ]
    }
  }
}
Output schema
{
  "type": "object",
  "additionalProperties": true
}