Home/Software to CVE
Resolver

Software to CVE

Paste a list of software & versions - get the CVEs that affect them, ranked by what to fix first
Give it the software you found on a host (one per line, any formatting). It normalises each to a known product, version-range matches it against the CVE/CPE data, and returns the vulnerabilities ranked Act now, then Schedule, then Monitor. It never runs a scan and never takes a file - scanner output (nmap, etc.) is parsed upstream in the Voidmap dashboard, which calls this engine.

Why this exists

A scanner tells you what software is running; it doesn't always tell you which of it is dangerous right now. This turns a software inventory into a prioritised vulnerability worklist, so an operator patches the few things that matter before the long tail.

What it does

1Normalises each line (spaces, dashes, slashes, mixed case to a known product + version)
2Resolves the product to its CPE via the alias graph
3Version-range matches it against affected CVEs (start/end bounds)
4Triages each CVE (KEV + EPSS + SSVC + exploit maturity incl. Metasploit) and sorts worst-first

How to use it

Type or paste one software per line. Examples - all of these work:
Apache HTTP Server 2.4.49
openssl 1.0.1g
nginx-1.20.0
log4j 2.14.1
Programmatic use (Voidmap): GET /api/resolve?software=… or POST {"text":"…"}.
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin