A JSON API over the ResilientX Security - CVE Navigator data: CVE records with CVSS, EPSS exploit prediction, CISA KEV status, CPE matching, vendor/product browsing, bulk prioritization, identifier resolution, and EU (EUVD) cross-references. Almost every endpoint is an HTTPS GET returning JSON (Prioritize is a POST). Base URL: https://community.resilientx.com.
The public API is free and needs no key. Every data endpoint — /api/v1/*, /enrich, and the legacy /cve/details and /api/cvefor — shares one budget of 30 requests per minute per IP; only /health and /status are exempt. For higher limits we issue an API key, sent as Authorization: Bearer YOUR_KEY or X-API-Key: YOUR_KEY, which bypasses the limit. Request one at [email protected].
GET /api/v1/cves?q=&severity=&kev=&eu_exploited=&epss_min=&page=&page_size= — search and filter CVEsGET /api/v1/cves/{id} — full CVE detail (CVSS, CWE, references, affected CPEs, EPSS, KEV, EUVD)GET /api/v1/cpe?cpe={cpe2.3} — CVEs affecting a CPE, with full version-range matchingGET /api/v1/vendors?q=&page=&page_size= — vendor directory with product and CVE countsGET /api/v1/vendors/{vendor} — products known for a vendorGET /api/v1/vendors/{vendor}/{product} — CVEs affecting a vendor/product pairPOST /api/v1/prioritize — rank a posted list of CVE ids by EPSS, KEV and EU-exploitedGET /api/v1/exploited?source=all|kev|eu&page=&page_size= — browse actively-exploited CVEs (CISA KEV + EU)GET /api/v1/resolve/{id} — resolve a CVE / EUVD / GHSA / GSD id to the canonical CVE(s) and aliasesGET /api/v1/euvd/{euvdId} — resolve an ENISA EUVD id to its cross-referenced CVE(s)GET /api/v1/packages/{ecosystem}/{name}?version={v} — CVEs affecting an OSV/GHSA package, with an optional version-in-range filterGET /api/v1/osv/{id} — resolve a GHSA/PYSEC/GO advisory id to its CVE(s)GET /api/v1/suggest?q=&limit= — search autocompleteGET /api/v1/stats — corpus counts, recent activity, and data freshnessGET /api/v1/openapi.json — machine-readable OpenAPI 3.1 specificationGET /api/v1/docs — interactive API reference (Scalar)GET /enrich/{id} — additive EPSS + CISA KEV + EU (EUVD) signalGET /status — service health and data freshnessGET /cve/details/{id}/json — legacy MITRE 4.0 record ({} on miss)GET /api/cvefor/{cpe} — cve-search document array ([] on miss)Higher limits and commercial use: [email protected].