About CyberWatcher

What is CyberWatcher?

CyberWatcher is a multi-vendor vulnerability intelligence platform that aggregates, filters, and prioritizes CVE data across 16 major enterprise vendors. It helps security teams, SOC analysts, and system administrators cut through vulnerability noise and focus on what actually poses risk to their infrastructure — using CVSS scores, EPSS exploitation probability, and CISA Known Exploited Vulnerabilities data together.

Tracked Vendors

Currently tracking 12,623 CVEs across all vendors.

Data Sources

  • NVD (NIST) — National Vulnerability Database API v2. Primary source for CVE data, CVSS scores, CWE classifications, and affected product information. CPE-based queries ensure exact vendor namespace matching — no false positives.
  • Red Hat Security API — Vendor-specific CVE details including fix states, affected packages, and Red Hat severity ratings (Critical / Important / Moderate / Low).
  • MITRE cvelistV5 — Daily delta releases from the CVE Program. Catches CVEs before NVD processes them.
  • Vendor RSS / Advisory Feeds — Direct advisory feeds from Fortinet, Veeam, and Splunk. Scraped for CVE IDs and enriched via NVD.
  • CISA KEV — Known Exploited Vulnerabilities catalog. Flags CVEs actively exploited in the wild with due dates for mandatory remediation.
  • 🎯
    FIRST.org EPSS — Exploit Prediction Scoring System. Daily scores (0–100%) representing the probability a CVE will be exploited in the wild within the next 30 days. Combined with CVSS, this enables risk-based prioritization rather than severity-only triage.

Features

  • 📊 Dashboard with severity distribution, vendor stats, and Needs Immediate Attention widget
  • 🔍 CVE browser — server-side SQL filtering by vendor, severity, KEV status, keyword; sort by CVSS, EPSS, date
  • 🎯 EPSS scores on every CVE — know the exploitation probability, not just the severity rating
  • ⚠️ CISA KEV flagging with due date countdown for mandatory remediation deadlines
  • 🔧 Fix availability indicator — see at a glance whether a patch exists
  • 🤖 AI-powered vulnerability analysis (per-CVE and bulk) via Cloudflare Workers AI
  • 📅 Weekly Report — 7-day digest with KEV list, high EPSS items, vendor breakdown; exportable as Markdown or HTML
  • 📤 Bulk export to CSV/JSON with 17-column report format
  • 📡 RSS feed for new vulnerability alerts
  • 🔄 Automated updates 5× daily (Mon–Fri, 08:00–16:00 CET) — no rebuild required

Architecture

CyberWatcher is a high-performance Server-Side Rendered application powered by Cloudflare's global edge network. All vulnerability data is stored in a distributed SQL database, allowing for real-time dashboard updates the moment new threat intelligence is published, without requiring site rebuilds or experiencing deployment delays.

Update Frequency

CVE data is refreshed multiple times daily. Each automated update cycle fetches new and modified CVEs from all data sources, enriches them with the latest EPSS scores, flags active CISA KEV entries, and updates the dashboard instantly.

Disclaimer

CyberWatcher is an independent project and is not affiliated with or endorsed by any of the tracked vendors. All CVE data is sourced from publicly available APIs and databases. This platform is provided "as is" for informational purposes only. Always refer to official vendor advisories for authoritative vulnerability information and patching guidance.