CVE Tools
Detection, not speculation · Nuclei + OpenVAS

Am I actually vulnerable?

Paste a CVE ID and get the exact detection check to run against your own systems — a ready-to-run Nuclei command or the OpenVAS NVT OID with a GMP query to confirm a host is affected.

Free · runs locally · no signup

scanner coverage live
151,496CVEs you can self-check
detectable today by Nuclei or OpenVAS
Nuclei36,613
OpenVAS119,327
In CISA KEV
505
Newest check added
Nuclei 4d ago
OpenVAS 3d ago
Prefer we run it? Managed external scan
Running the check once is easy — the work is knowing every asset it applies to and re-running it as your surface shifts. We do continuous external scanning across your public IPs and domains and report only what's actually exposed. External-only, non-intrusive, no agents.
Scan my external estate

Latest high-severity CVEs you can verify

Newest critical/high vulnerabilities a scanner can check — Nuclei or OpenVAS.

Trending CVEs to verify now

What the security world is discussing right now — and can be checked with a scanner.

Frequently asked questions

How do I check whether a host is affected by a CVE?

Enter the CVE ID above. If a scanner covers it, we hand you the exact check to run against your own target — a ready-to-run Nuclei command and/or the OpenVAS NVT OID with a GMP query to confirm the NVT is in your feed.

Is there a Nuclei template for this CVE, and how do I run it?

When an official ProjectDiscovery template exists we give you the template ID and a copy-ready command (nuclei -id <CVE> -u <target>). If no template is published yet, we say so plainly rather than fabricate one.

What is the OpenVAS NVT OID for a CVE and how do I confirm it?

We list the detecting NVT OID(s) and a GMP query (get_nvts nvt_oid=...) so you can confirm the NVT is present in your Greenbone feed at your feed version before trusting a clean result.

Does a positive detection mean the host is exploitable?

No. These are detection checks — they fingerprint the vulnerable condition (service, version, reachable endpoint), not exploitability. Cross-reference CISA KEV and EPSS to judge real-world risk.

What if no scanner covers the CVE I'm checking?

Not every CVE has a published Nuclei or OpenVAS check. When neither covers it, we tell you and point you to the affected products so you can check manually — or run a managed external scan and we'll confirm exposure for you.