Skip to content

DebaA17/CVE-scanner-cli

BranchesTags

Repository files navigation

CVE Scanner CLI

A command-line tool to search for CVEs (Common Vulnerabilities and Exposures) using public APIs. Results are displayed with color formatting and details using the rich library.

Features

  • Search CVEs by ID (using cve.circl.lu)
  • Search CVEs by keyword in description (using NVD)
  • Prints formatted CVE details (ID, published/modified date, CVSS score, severity, description, references)
  • Interactive menu or command-line arguments

Requirements

  • Python 3.7+
  • requests
  • rich

Installation (Local/Global Usage)

git clone https://github.com/DebaA17/CVE-scanner-cli.git
cd CVE-scanner-cli
bash setup.sh

The setup script offers two install methods:

  • Docker (recommended): pulls the prebuilt GHCR image and adds a cvecli alias to your default shell.
  • Local machine: creates the virtual environment, installs dependencies, and links cvecli into ~/.local/bin.

You can also choose the install method directly:

bash setup.sh --docker
bash setup.sh --local

If your current terminal was already open before setup, reload it with:

source ~/.bashrc

If you use zsh, run:

source ~/.zshrc

Uninstall

To remove the global cvecli command, Docker alias, and any PATH entry added by setup, run:

bash uninstall.sh

This removes the ~/.local/bin/cvecli launcher, removes the Docker alias from your shell startup files, and cleans the PATH line if it was added for the local install. It does not delete the repository folder or myenv.

Local Docker Testing

If you want to test the Docker image locally instead of using the prebuilt GHCR image, build it once with:

docker build -t cvecli .

Then run it with:

docker run --rm -it cvecli

Or pass arguments directly:

docker run --rm cvecli --id CVE-2025-55184
docker run --rm cvecli --keyword wordpress

Usage

Interactive Mode (Recommended)

cvecli

You will be prompted to enter either a CVE ID or a keyword. Just follow the on-screen instructions to search for CVEs by ID or by keyword in the description.

Search by CVE ID

cvecli --id CVE-2025-55184

Search by Keyword

cvecli --keyword wordpress

Output Example

Results are shown in the terminal with color formatting for better readability.

Demo Output (CVE ID Search)

CVE ID Demo

Demo Output (Keyword Search)

Keyword Search Demo

Notes

  • CVE ID search uses the cve.circl.lu API.
  • Keyword search uses the NVD API and returns up to 5 results per search.

Disclaimer

This tool is provided for educational and informational purposes only. The owner and contributors are not responsible for any misuse, damage, or legal issues resulting from the use of this software. Use at your own risk.

License

MIT

Created by DEBASIS

About

A fast, user-friendly CLI tool to search and display CVE details by ID or keyword using public vulnerability databases.

Topics

docker-container terminal-based public-api cve-search national-vulnerability-database

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Sponsor this project

Packages

 
 
 

Contributors

Languages