Search Examples: Basic & Advanced

*NotCVEs and CVEs supported, full list of features here
Basic Search

Use word1 word2 word3 etc, in your normal search. Full search using title, description, vendors, products, versions, references, credits, CWE, CAPEC, etc.

Search Example 1: CVE-2024 XSS
Search Example 2: git.kernel kfree_rcu()
Search Example 3: Google Project Zero
Search Example 4: Type Confusion Firefox
Exploits, PoCs & Patches

Use keywords exploits:yes and/or patches:yes to find vulnerabilities with exploits/patches:

Search Example 1: ffmpeg exploits:yes
Search Example 2: windows driver exploits:yes
Search Example 3: linux patches:yes
Search Example 4: Geoserver exploits:yes patches:yes
Vendor, Products, and Versions

Use keywords: vendor:xxx product:yyy version:zzz or a combination of them. Curent beta version partialy supports version:[<,<=,>,>=] Note that this will only retrive results if they appear in CPEs entries.

Search Example 1: vendor:Microsoft product:Windows
Search Example 2: vendor:Linux product:"Linux kernel"
Search Example 3: vendor:Microsoft product:"Windows 10" Version:"> 20h2"
Search Example 4: vendor:Linux product:"Linux kernel" Version:"> 5.14"

Refine by adding relevant words: vendor:xxx product:yyy word1 word2

Search Example 1: vendor:"Microsoft" product:"Windows 11" MSMQ
Search Example 2: vendor:"Microsoft" product:"Windows 11" Secure Boot
Search Example 3: vendor:Linux product:"Linux kernel" bcm
Search Example 4: vendor:Linux product:"Linux kernel" ntfs
*When using vendor:xxx product:yyy version:zzz, the terms must be in a CPE. CPE assignment to new vulnerabilities can take time. To find the latest vulnerabilities, also search for vendors/products without keywords to avoid missing recent and relevant vulnerabilities.
Abbreviation Search

When searching using abbreviations, they are expanded ensuring that you don't miss any vulnerabilities even if different vulnerability descriptions use different words.

Search DOS  <=>   Denial Of Service
Search ACE  <=>   Arbitrary Code Execution
Search SBX  <=>   SandBox Escape |  SandBox Bypass 
Search LPE  <=>   Local Privilege Escalation |  Escalate Privileges
Search RCE  <=>   Remote Code Execution |  Remote Execute Code | Execute Arbitrary Code
Search Info leak  <=>   infoleak |  information leak | information disclosure |  data leakage

Refine by adding relevant wordss:  word1 word2 abbreviation:

Search Example 1: Wordpress RCE
Search Example 2: VMware Info Leak
Search Example 3: Zoom LPE
CVSS Score

Use: cvss:[<,<=,>,>=] to filter vulnerabilities by CVSS score:

Search Example 1: Wordpress cvss:10
Search Example 2: Firefox cvss:>9
Search Example 3: Adobe Framemaker cvss:>8.5
Vulnerable Linux Commits & Versions

Use commit:xxxxxxxxxxxx or in most cases is just enough to use the hash:

Search Example 1: commit:5447f9708d9e 
Search Example 2: 5447f9708d9e
Search Example 3: 5447f9708d9e4c17a647b16a9cb29e9e02820bd9

Search for specific versions vendor:Linux product:"Linux Kernel" version:xxx

Search Example 1: vendor:"Linux" product:"Linux Kernel" version:>5.17
Search Example 2: vendor:"Linux" product:"Linux Kernel" version:>5.17 patches:yes crypt
Search Example 3: vendor:"Linux" product:"Linux Kernel" version:>5 cvss:>8 exploits:yes
*When using vendor:xxx product:yyy version:zzz, the terms must be in a CPE. NotCVE is assigning CPEs to Linux Kernel vulnerabilities.
NotCVE provides the Linux Kernel CPEs that MITRE and NVD lack.