opencve v1.1 releases: CVE Alerting Platform
OpenCVE (formerly known as Saucs) is a platform that alerts you about new vulnerabilities related to the CVE list.
How does it work
After an initial import, a background task is regularly executed to check changes in the list. If a new CVE is added, or if a change is detected, the subscribers of the related vendors and products will be alerted.
For now, the only method of notification is the mail, but we plan to add other integrations (webhooks, Slack, Jira, PagerDuty, OpsGenie…).
OpenCVE lets you search the CVE you want to be filtered by the vendor, product, CVSS, or CWE.
Because security is our main concern as well, everything is done to ease access to vulnerability warnings and let you know first.
Analyse CVE details
- CVE (Common Vulnerability Enumeration)
- CPE (Common Platform Enumeration)
- CWE (Common Weakness Enumeration)
- CVSS (Common Vulnerability Scoring System)
Manage your subscriptions
You can then subscribe to as many vendors or products as you want, and you will be notified as soon as a CVE concerning them is published or updated.
Custom dashboard and reports
OpenCVE keeps track of the changes, so you can find the history of your alerts on your Reports page.
Don’t miss a vulnerability disclosure anymore: you subscribe in one click on any vendors or products, and you receive an alert as soon as a CVE is published or updated.
OpenCVE formats the notifications in such a way that you can quickly see what are the affected vendors and products.
- Display vulnerability type with the CWE ID
- Add more statistics in admin dashboard
- Add opencve-docker repository link
- Release the API
- Return API datetimes in ISO8601
- Add API ratelimit
- Check if email is unique when editing a profile
- Check search attribute instead of id in CWEs listing
- Fix “stmp_password” in configuration, ensure compatibility before deprecating it