VOOZH about

URL: https://apify.com/kingofthejunes/cve-scraper

โ‡ฑ cve-scraper ยท Apify

Pricing

from $0.01 / 1,000 results

Go to Apify Store

CVE = Common Vulnerabilities and Exposures. official ID for a security vulnerability so the world can track and fix it

Pricing

from $0.01 / 1,000 results

Rating

0.0

(0)

Developer

๐Ÿ‘ Kayode Balogun

Kayode Balogun

Maintained by Community

Actor stats

0

Bookmarked

3

Total users

0

Monthly active users

7 months ago

Last modified

Categories

Share

NVD CVE Scraper

An Apify actor that fetches recent CVE (Common Vulnerabilities and Exposures) data from the National Vulnerability Database (NVD) using their official API.

Features

  • Fetches CVEs published in the last 7 days
  • Uses the official NVD API 2.0 for reliable data access
  • Extracts CVE ID, description, publication date, and metadata
  • Outputs structured data to Apify dataset

Why Use the API Instead of Scraping?

The NVD website loads CVE data dynamically via JavaScript, making traditional HTML scraping unreliable. The official API provides:

  • Structured, reliable data
  • Better performance
  • No risk of breaking when the website UI changes
  • Official support from NIST

Input Configuration

You can customize the actor by modifying these parameters in the code:

// Adjust the date range (currently set to last 7 days)
const sevenDaysAgo =newDate(now.getTime()-7*24*60*60*1000);
// Adjust results per page (max 2000)
resultsPerPage:'100'

Output

Each scraped CVE includes:

  • cve: CVE identifier (e.g., CVE-2024-12345)
  • description: English description of the vulnerability
  • published: Publication date
  • lastModified: Last modification date
  • sourceIdentifier: Source that reported the CVE

Example Output

{
"cve":"CVE-2024-12345",
"description":"A buffer overflow vulnerability in XYZ software allows remote attackers to execute arbitrary code...",
"published":"2024-11-15T10:15:00.000",
"lastModified":"2024-11-15T10:15:00.000",
"sourceIdentifier":"security@example.com"
}

Rate Limits

The NVD API has rate limits:

  • Without API key: ~5 requests per 30 seconds
  • With API key: 50 requests per 30 seconds

For this actor (single request), rate limits shouldn't be an issue.

Getting an API Key (Optional)

For higher rate limits or frequent runs:

  1. Request a free API key at: https://nvd.nist.gov/developers/request-an-api-key
  2. Add it to your code:
const response =awaitfetch(apiUrl,{
headers:{
'User-Agent':'Apify-CVE-Scraper/1.0',
'apiKey':'YOUR_API_KEY_HERE'
}
});

Installation

  1. Create a new Apify actor
  2. Copy the code into your actor's main file
  3. Deploy and run

Usage Examples

Run as Scheduled Actor

Set up a schedule to run daily and monitor new CVEs:

  1. Go to your actor in Apify Console
  2. Click "Schedule"
  3. Set to run daily at your preferred time

Export Data

The scraped CVEs are stored in the actor's dataset and can be:

  • Downloaded as JSON, CSV, or Excel
  • Accessed via Apify API
  • Pushed to external services using integrations

Advanced Customization

Filter by Severity

Add CVSS score filtering to the API request:

const params =newURLSearchParams({
pubStartDate: sevenDaysAgo.toISOString(),
pubEndDate: now.toISOString(),
cvssV3Severity:'CRITICAL',// or HIGH, MEDIUM, LOW
resultsPerPage:'100'
});

Search by Keyword

Filter CVEs containing specific keywords:

const params =newURLSearchParams({
keywordSearch:'buffer overflow',
resultsPerPage:'100'
});

API Documentation

Full NVD API documentation: https://nvd.nist.gov/developers/vulnerabilities

Troubleshooting

No CVEs returned: Check that there were CVEs published in your date range. Try expanding the date range.

API errors: Ensure you're not hitting rate limits. Add delays between requests if making multiple API calls.

Empty descriptions: Some CVEs may not have English descriptions immediately upon publication.

License

This actor uses public data from the National Vulnerability Database. Please review NVD's terms of use.

Support

For issues or questions:

You might also like

CVE Scraper

rl1987/cve-scraper

CVE.org vulnerability info scraper

CVE Search MCP Server

vulnv/cve-search

Model Context Protocol (MCP) server for searching and retrieving CVE (Common Vulnerabilities and Exposures) information from the CVE-Search API. Provides tools to search CVEs by vendor, product, CVE ID, and get latest vulnerabilities with CAPEC, CWE and CPE expansions.

CVEs Search API Scraper

dev00/cves-search-apify

Programmatically query the CVE vulnerability databases for historical vulnerabilities, packages vulnerabilities, and detailed CVE record files.

dev00

2

NVD CVE Vulnerability Search

ryanclinton/nvd-cve-vulnerability-search

NVD CVE Vulnerability Search queries the NIST National Vulnerability Database (NVD) REST API v2.0 to retrieve detailed information about Common Vulnerabilities and Exposures (CVEs). The NVD is the U.S.

13

CIRCL CVE Search Scraper

parseforge/circl-cve-scraper

Scrape CVE vulnerability records from CIRCL CVE Search. Fetch the latest CVEs, look up by ID, browse vendor products, or list every CVE for a vendor/product. Returns CVSS, CWE, CPEs, references, CAPEC, and impact metrics.

NVD CVE Scraper - Vulnerability Database API

pink_comic/nvd-cve-vulnerability-database

Search the NIST NVD CVE vulnerability database by keyword, CVSS severity, vendor, or date. Use as an NVD scraper / CVE API for DevSecOps, patch management, threat intel, compliance monitoring, and security vulnerability research. No API key needed; pay per result.

NIST NVD CVE Vulnerability Database Scraper

compute-edge/nist-nvd-scraper

Search and extract CVE vulnerability data from the NIST National Vulnerability Database (NVD) API 2.0. Filter by keyword, CVSS severity, publication date, and modification date. Returns flattened CVE records with CVSS scores, CWE IDs, references, and affected products.

4

5.0