Self-hostable. Powerful. Actionable.

Turn CVE noise into actionable vulnerability intelligence

OpenCVE helps security teams explore, enrich, and track vulnerabilities from NVD, MITRE, CISA, Redhat and other trusted sources in one place.

  • Aggregate CVEs from trusted sources
  • Enrich with CVSS, EPSS, KEV and custom data
  • Automate triage, tickets and remediation
Start for free Explore the CVE database
No credit card required Community friendly

Product overview · Click to enlarge

Explore vulnerabilities

Search and filter 350k+ CVEs from a unified database with powerful query tools and live data.

Learn more

Understand impact

AI-powered enrichment surfaces impact, affected systems, and recommended actions at a glance.

Learn more

Track remediation

Assign owners, set statuses, and follow remediation across teams with full visibility.

Learn more

Automate workflows

Route alerts to email, Slack or webhooks based on rules you define and control.

Learn more
CVE Explorer

Explore every vulnerability from one powerful database

OpenCVE aggregates vulnerability data from NVD, KEV, MITRE, Red Hat, CISA and more. Search fast, filter precisely, and get the context you need.

MITRE NVD CISA KEV Red Hat …more
CVE Explorer interface
AI Enrichment

Understand CVEs instantly with AI-powered enrichment

OpenCVE turns incomplete CVE descriptions into structured, actionable analysis: impact, affected systems, exploitability signals and remediation guidance.

OpenCVE AI enrichment analysis

Impact

Severity and business impact summarized for quick triage.

Affected Systems

Products and versions mapped to your environment.

Risk & Exploitability

CVSS, EPSS, and KEV context combined into clear risk signals.

Recommended Actions

Clear next steps for mitigation, patching, or risk acceptance.

CVE remediation tracking board
Remediation Tracking

Track remediation across your entire organization

Know who owns each CVE, what its current status is, and what still needs to be done. From initial analysis to remediation or risk acceptance.

In analysis Mitigation planned Remediating Risk accepted ...more
OpenCVE automation workflows
Automation

Automate vulnerability workflows end to end

Connect multiple CVE sources to a rules engine that triggers the right actions, email, webhooks, Slack, Jira, and more.

Teams & Organizations

Built for security teams, SOCs and MSSPs

From enterprises to MSSPs and product security teams, organize work the way your team operates.

Enterprise

Secure your organization with centralized visibility, governance and integrations.

MSSP

Manage multiple customer environments with scale and efficiency.

Product Security

Monitor your products, reduce risk early and ship securely.

Live Database

Explore the CVE Database

Start exploring vulnerabilities instantly. Search the public CVE database with real filters and live data.

OpenClaw Microsoft Linux Chrome Cisco Firefox Fortinet Oracle Adobe Apache Qualcomm Redhat Debian VMware Mozilla Samsung SAP IMB Juniper GitLab WordPress OpenSSL MongoDB Django Palo Alto Atlassian AMD Zoom Jenkins Kubernetes Docker Next.js Python OpenSSH Rust
Quick searches
Recently added CVEs in KEV High EPSS Critical CVEs SQL Injection XSS RCE Log4Shell Heartbleed EternalBlue ProxyShell Citrix Bleed XZ Backdoor regreSSHion Looney Tunables PrintNightmare Copy Fail
Browse all vulnerabilities
Deployment & Pricing

Choose your deployment and pricing

Start with Community. Scale with Cloud.

OpenCVE Community is source-available and self-hosted on your infrastructure. OpenCVE Cloud is our managed platform with AI enrichment, enterprise controls, and advanced workflows.

Deploy your way

Community

Self-hosted CVE monitoring

Self-host OpenCVE on your infrastructure with full control over your data, subscriptions, and notification workflows.

Best for: Individuals, small teams, and organizations that want a self-hosted CVE monitoring foundation.

  • CVE database access
  • Vendor & product subscriptions
  • CVE tracking
  • Self-hosted deployment
  • Community support
  • BSL license
View on GitHub
Recommended for teams

Cloud

Advanced vulnerability intelligence

Use our managed platform with AI-powered analysis and enterprise security controls without infrastructure overhead.

Best for: Security teams, SOCs, MSSPs, and organizations that need to prioritize and automate vulnerability workflows.

  • AI-powered CVE analysis
  • Remediation guidance
  • SAML 2.0 SSO
  • MFA enforcement
  • Managed infrastructure
  • Priority support
Start for free

Simple, transparent pricing

Free

€0

 

For individuals exploring CVE monitoring

Start tracking vulnerabilities, alerts, and API access with the core OpenCVE experience

  • Track your first project
  • Receive email notifications
  • Explore basic CVE search and filtering
  • Access the OpenCVE API

Includes: 1 project, 1 user, 1 automation, 5 subscriptions, 100 API calls / hour

Get started

Starter

€19

/ month

For teams starting with CVE monitoring

Monitor your stack, automate alerts, and get AI-powered summaries in one platform

  • Cloud-hosted CVE monitoring
  • AI report summaries
  • Email, Slack and Webhook notifications
  • Simple automations for recurring workflows

Includes: 3 projects, 3 users, 3 automations, 15 subscriptions, 1,000 API calls / hour

Get started
Recommended

Pro

€49

/ month

Best for security teams scaling CVE monitoring

Prioritize vulnerabilities across teams, dashboards, exports, automations, and integrations

  • Everything in Starter
  • Multiple dashboards
  • CSV export for reporting and analysis
  • MFA enforcement for stronger account security
  • Scalable quotas as your monitoring grows

Includes: 10 projects, 10 users, 10 automations, 50 subscriptions, 5,000 API calls / hour

Get started

Enterprise

€299

/ month

For organizations needing unlimited CVE monitoring

Scale OpenCVE with SSO, audit logs, unlimited usage, and enterprise-grade governance

  • Everything in Pro
  • Unlimited monitoring across teams and projects
  • SAML 2.0 SSO
  • Audit logs
  • Advanced governance for larger organizations

Includes: unlimited projects, users, automations, subscriptions and API calls

Get started

Ready to turn CVE data into actionable intelligence?

Start for free Explore the database

Frequently Asked Questions

Yes, you can choose the Free Plan to test our solution. If you choose a paid Plan, you can unsubscribe anytime and your subscription will automatically end at the end of its period.

To get started, simply create an account and you will automatically be on the Free Plan. Then, go to the Usage & Billing section of your account to upgrade to the Starter, Pro or Enterprise plan. You can pay using credit card, PayPal, or Google Pay.

If you prefer to receive a quote, we can provide one. Just email us at billing@opencve.io with the quotas you need, and we will send you a personalized quote.

Yes, you can choose to subscribe monthly or yearly. Yearly subscriptions include 2 bonus months for free.

Payments are processed by our trusted partner (Paddle). We do not store any credit card information on our servers. All transactions are encrypted and securely handled by the payment providers.

Yes, there is no commitment. If you cancel your subscription, it will stay active until the end of the current billing period. After that, your account automatically switches back to the Free Plan.

For example, if you subscribe for 1 month on November 14 and cancel on November 18, you keep all paid features until December 14.

Quotas displayed for each plan are attached to your organization. For subscriptions and notification settings, you are free to distribute them across your projects however you like.

For example, with 15 subscriptions, you could allocate 4 to Backend API, 5 to Mobile App, and 6 to Internal Tools.

Yes, OpenCVE is open source and can be installed on-premise according to our license terms.

If you prefer a fully managed experience, you can use our SaaS with the plan that best fits your needs. If you use OpenCVE on-premise for commercial purposes (for example, to monitor the products of your own customers or to resell the service), you must purchase a commercial license. Please contact us at billing@opencve.io.