Common Vulnerabilities and Exposures (CVE®)

**Overview** This dataset contains all publicly disclosed cybersecurity vulnerabilities identified by, or reported to, the MITRE CVE® Program. It is ingested from the [CVE GitHub repository](https://github.com/CVEProject/cvelistV5) and updated hourly to provide the latest information. **Use cases** - Enriches vulnerability scan reports with additional details (descriptions, references, impact ratings, etc.) - Enables the monitoring and prioritization of newly reported vulnerabilites. **Product details** Table(s) included: - cves_bronze - cves_silver The cves_silver table is a cleansed version of cves_bronze containing the most common and practical attributes. Fields included: - cveId: The CVE identifier that this record pertains to. - datePublished: The date/time the CVE Record was first published in the CVE List. - dateUpdated: The date/time the record was last updated. - assignerOrgId: The UUID for the organization to which the CVE ID was originally assigned. This UUID can be used to lookup the organization record in the user registry service. - assignerShortName: The short name for the organization to which the CVE ID was originally assigned. - problemTypes: This is problem type information (e.g. CWE identifier). - affected: List of affected products. - descriptions: A list of multi-lingual descriptions of the vulnerability. - references: This is reference data in the form of URLs or file objects. These are the minimally required attributes available for each record in the dataset. Additional attributes and metadata may also be available. For more details, refer to the embedded notebook. **Additional Insights** - [CVE Website](https://www.cve.org/) - [CVE Schema](https://cveproject.github.io/cve-schema/schema/v5.0/docs/#oneOf_i0_containers_cna_references) CVE® is a registered trademark of the MITRE Corporation.