Opensource Vulnerability Management Platform

  • Optimize your CVE management, all in one place

  • Organize your subscriptions simply and easily

  • Receive notifications, save valuable time

hero-image
content-image
Multiple providers (MITRE, NVD, REDHAT, Vulnrichment...)

Optimize your CVE management

OpenCVE aggregates data from multiple CVE providers into a single interface, ensuring the database is always up to date.

The entire CVE database can be listed and filtered by Vendor, Product, CVSS or CWE according to your needs.

You can create your own tags (unread, important, anlyzed, devteam...) and organize the CVE list based on your own criteria.

Organizations & Projects

Organize your subscriptions

OpenCVE allows you to organize your vendor and product subscriptions into projects.

You can use your own criteria: one project per customer, per unit in your organization, etc.

Each project is independent and has its own dashboard, subscriptions, reports and notification rules.

content-image
content-image
Advanced Notifications

Integrate your own tools

Receive a notification as soon as a new CVE appears or when a CVE matching your rules is updated.

OpenCVE supports multiple notification methods including email and webhook calls.

You can forward important alerts to your preferred notification method, or link OpenCVE with your own ITSM solution using webhooks.

Daily Reports

Analyze your projects activity

OpenCVE creates a daily report for all your projects.

Combined with direct notifications, it's a useful tool to see at a glance what's new with your products and vendors.

content-image

SaaS or On-premise

Our objective with OpenCVE is to allow all organizations to secure themselves easily, which is why OpenCVE is available on Github. You can freely use it under the license conditions.

2.0k

Github stars

50k

Users

20M

Reports sent

Choose the plan that fits your organization needs.

Save 2 months by paying annually.

Free Starter Pro Enterprise
$0 $19.00
/month
$49.00
/month
Custom
/month
For solo SecOps, get notified now For growing companies For companies with multiple teams For organizations with specialized needs
Select Plan Select Plan Contact Us
Projects 1 3 Unlimited
Users 1 3 Unlimited
Configurable Notifications 1 3 Unlimited
Subscriptions 5 15 Unlimited
Reports Retention 1 month 1 month 12 months 24 months
API Calls 60 /hour 240 /hours 240 /hours Unlimited
Notification Delivery Unlimited Unlimited Unlimited Unlimited
Email Notification
Webhook Notification
Reseller License

Prices may vary from location to location due to local taxation laws and conversion rates from U.S. Dollars.

Looking For Support?

You can create an issue on Github with any Plan you have chosen, we will do our best to answer it. If you have the Entreprise plan, you can contact us directly to our email support.

Frequently Asked Questions

Do you have a free trial?

Yes, you can choose the Free Plan to test our solution. If you choose a paid Plan, you can unsubscribe anytime and your subscription will automatically end at the end of its period.

How can I use OpenCVE?

You can use it on our SaaS with the Plan that best suits your needs or on-premise according to our license conditions.

How are the quota applied?

The quotas displayed for each offer are attached to the organization. For subscription and notification configurations, you can use and distribute them however you want between your projects. For example, with 15 subscriptions, you could use 4 on project-1, 5 on project-2, and 6 on project-3.

What does it change with the v2?

We've introduced major changes in v2 that will allow us to add many new features in the coming months. We've built these features based on your feedback and continue our journey to become your central solution for vulnerability risk management.

When is the migration scheduled from v1 to v2 on the Saas opencve.io?

The v2 is available in our Github repository on the dedicated v2 branch. The migration of the SaaS version available here was successfully completed on September 6th, 2024, with all users from opencve.io v1 migrated to v2.

What happend to my asset subscriptions from the v1?

All your subscriptions and tags have been migrated to the Free plan. If you exceed the quota limits compared to our pricing, your project has been set up but disabled. You can choose to upgrade your plan or clean up your subscriptions. Your organization, project, and notifications were automatically created during migration.