Vulnerability advisory providers

• • CVE.org – CVE Program (MITRE)
• • OSV.dev – Open Source Vulnerabilities
• • GitHub Security Advisory Database
• • Red Hat Security Advisories
• • Arch Linux Security Tracker
• • GitLab Advisory Database
• • GCVE – Global CVE Database
• • Fluid Attacks Vulnerability Database
• • CIRCL – Computer Incident Response Center Luxembourg
• • ENISA – European Union Agency for Cybersecurity
• • VulnCheck – Vulnerability search and analysis

Severity and exploitation intelligence

• • CVSS – Common Vulnerability Scoring System (FIRST)
• • NIST NVD – National Vulnerability Database
• • EPSS – Exploit Prediction Scoring System
• • CISA KEV – Known Exploited Vulnerabilities Catalog
• • Exploit-DB – The Exploit Database (Offensive Security)
• • Nuclei Templates – ProjectDiscovery CVE Templates
• • PoC-in-GitHub – Public Proof-of-Concept Exploit Aggregator
• • Metasploit Framework – Rapid7 Exploit Framework