12 #cve MCP Servers & Clients
Every MCP server and client below is tagged #cve — install one to give Claude, Cursor, VS Code, or any other MCP-compatible client access to cve tools.
All
BurpMCP
swgee
Burp Suite Extension with MCP Server to enhance manual application security testing
MCP NVD Server
gkhays
MCP server that retrieves CVE information
Mlab - IOC & Threat Intelligence
mlab-sh
Threat intelligence MCP server for SOC analysts, DFIR and security researchers. Scan and enrich IOCs directly from Claude, Cursor or any MCP client: IP addresses (IPv4/IPv6), domains, file hashes and blockchain addresses. Search CVEs by keyword, vendor or product, retrieve full C
Sentinelx402
splitfireai-hue
Real-time phishing detection, IP reputation, and CVE risk analysis API for AI agents. Powered by live threat feeds (OpenPhish, Feodo Tracker, URLhaus). Pay per request via x402 micropayments (USDC on Base). First 1,000 requests free, no signup required.
CIRCL CVE SEARCH MCP Server
Cyreslab-AI
MCP server for CIRCL CVE Search API with intelligent risk assessment and comprehensive vulnerability analysis.
FalconFeeds MCP server
Technisanct
Connect real-time cybersecurity threat intelligence to your AI workflows through standardized tools and resources. Access comprehensive IOCs, CVEs, TTPs, and threat actor data from FalconFeeds.io with seamless integration across Claude Desktop, VS Code, and other MCP-enabled appl
Contrastapi — Security Intelligence
UPinar
Security intelligence API for AI models. CVE lookup with EPSS/KEV enrichment, domain reconnaissance (DNS, WHOIS, SSL, subdomains, WAF detection), and code security checks (secrets, injection, headers). No API key required.
Riskscore
ItIsCuthNotCup
Security awareness for AI agents — so your agent knows what's dangerous before it acts. Powered by CVE, NVD, CISA KEV, and OSV.dev vulnerability data with 196 credential detection rules, returning allow/warn/block decisions in real time. Stop your agent from running vulnerable de
Compuute MCP Security Scanner
Compuute
Scan-as-a-Service for MCP servers — HTTP+MCP wrapper around compuute-scan
LiveDataLink
blackboxfoundry
LiveDataLink is a hosted MCP server giving AI agents 182 real-time data tools across 36 domains through a single Streamable HTTP endpoint. Coverage includes sanctions screening (OFAC + UN + EU + BIS DPL first-party indexed), SEC EDGAR, federal courts plus Caselaw Access Project,
Elsas Security Intelligence
romans-repos
Daily, Ed25519-signed security intelligence for AI-agent stacks: CVEs, supply-chain incidents and advisories (GHSA/CISA-KEV/OSV/NVD + national-CERT) assessed for MCP/LLM-proxy impact, cross-validated and signed. Paid via x402 ($0.10 USDC on Base); free sample, list_available, che
Attestd - Deterministic CVE & Supply Chain Data
attestd-io
Deterministic, machine-readable CVE and supply chain risk data for infrastructure, PyPI, and npm packages. Built for AI agents and coding assistants to act on directly, no CVSS interpretation required. Covers nginx, PostgreSQL, Redis, Docker, Kubernetes, and more.
Frequently asked questions
What is a #cve MCP server?
- An MCP server tagged #cve implements the Model Context Protocol so AI assistants like Claude, Cursor, and VS Code can access cve-related tools, data, or APIs.
How many #cve MCP servers and clients are there?
- mcp.so currently lists 12 MCP servers and clients tagged #cve.
How do I install a #cve MCP server?
- Open any server below and copy its install snippet into Claude Desktop, Cursor, VS Code, or another MCP client's configuration — remote servers need no separate download.