Vulnerability Intelligence Platform

The central hub for modern teams managing vulnerability monitoring and alerting.

  • Centralize and simplify your CVE management

  • Keep your subscriptions clean and organized

  • Get instant alerts and react faster

  • Use AI to identify impacted productsAI Icon

  • Track and assign CVEs with clear statuses

Try OpenCVE for free Explore
OpenCVE Dashboard Interface

Trusted by 250+ companies of all sizes worldwide

CVE List Management Interface
Multiple Providers

Centralize your CVE management

Aggregate data from MITRE, NVD, RedHat, CISA, Vulnrichment and more into a single up-to-date interface.

Filter and prioritize CVEs by vendor, product, CVSS, EPSS, KEV, or CWE to focus on what matters most.

Create custom tags and organize CVEs by status, importance, or your own workflow criteria.

CVE Tracking

Streamline your workflow

Assign CVEs to the right people and ensure clear ownership at every step.

Track each CVE through a structured lifecycle with customizable statuses for full traceability.

Boost team efficiency with instant visibility into who owns what and what stage each CVE is in.

CVE Tracking and Reporting Feature
Customizable OpenCVE Dashboards
Draggable Widgets

Build your custom dashboards

Create fully personalized dashboards with dynamic widgets that fit your workflow.

Track recent CVE activity, projects, tags, and subscription updates — all in one place.

Use widgets to monitor CVEs by priority, assignee, and status, or create custom views for high CVSS/EPSS scores and KEV-listed vulnerabilities.

Organizations & Projects

Organize your subscriptions

OpenCVE allows you to organize your vendor and product subscriptions into projects.

You can use your own criteria: one project per customer, per unit in your organization, etc.

Each project is independent and has its own dashboard, subscriptions, reports and notification rules.

OpenCVE Projects Management
OpenCVE Notification Settings
Advanced Notifications

Integrate your own tools

Receive a notification as soon as a new CVE appears or when a CVE matching your rules is updated.

OpenCVE supports multiple notification methods including Email, Slack, and Webhook.

You can forward important alerts to your preferred notification method, or link OpenCVE with your own ITSM solution using webhooks.

Daily Reports

See your priorities instantly

Get an AI-powered daily report covering all activity across your projects.

Quickly spot your highest-priority CVEs: new alerts, high EPSS scores, and KEV additions.

Save time with a clear, daily summary of what needs your attention first.

Daily Reports and Activity Analysis

SaaS or On-premise

Our objective with OpenCVE is to allow all organizations to secure themselves easily, which is why OpenCVE is available on Github. You can freely use it under the license conditions.

2.3k

Github stars

50k

Users

20M

Reports sent

Choose the plan that fits your organization needs.

Save 2 months by paying annually.

FreeStarterProEnterprise
$0$19.00
/month		$49.00
/month		Custom
/month
For solo SecOps, get notified nowFor growing companiesFor companies with multiple teamsFor organizations with specialized needs
Select PlanSelect Plan Contact Us
Projects A project groups the technologies you track and defines how you’re notified, giving you a clear and focused view of your CVE exposure. Learn more in the documentation →13
10 ( customize)
Unlimited
Users Users are members of your organization who can access projects, view CVEs, and be assigned to security actions such as analysis or risk acceptance. Learn more in the documentation →13
10 ( customize)
Unlimited
Configurable Notifications Each project can have dedicated notification channels, delivering unlimited CVE alerts by email, Slack, or webhook, directly where you work. Learn more in the documentation →13
10 ( customize)
Unlimited
Subscriptions Subscriptions define the technologies you track (e.g. Fortinet, Cisco, WordPress, Terraform). This quota is shared across all projects in your organization. Learn more in the documentation →515
50 ( customize)
Unlimited
Reports Retention A daily report is generated for each project, showing all CVE activity impacting your tracked technologies and giving you a clear security history over time. Learn more in the documentation →1 month1 month12 months24 months
API Calls The OpenCVE API allows you to query CVEs and their full details, as well as project-level vulnerability exposure, for seamless integration with enterprise security tools. Learn more in the documentation →100 /hour1000 /hours5000 /hoursUnlimited
Notification Delivery Notification delivery represents the actual sending of CVE alerts through the channels configured in each project. Learn more in the documentation →UnlimitedUnlimitedUnlimitedUnlimited
Email Notification Emails are sent to the configured address whenever new CVEs are published or existing CVEs are updated. Learn more in the documentation →
Slack Notification CVE updates are posted directly to your Slack channels, keeping your team informed in real time. Learn more in the documentation →
Webhook Notification Webhook notifications send CVE updates as HTTP POST requests to a configured endpoint, enabling seamless integration with internal tools. Learn more in the documentation →
AI Report Summary An AI-generated summary highlights the most critical CVEs and recommended actions, helping you quickly focus on what matters most. Learn more in the documentation →
Reseller License

Prices may vary from location to location due to local taxation laws and conversion rates from U.S. Dollars.

Looking For Support?

You can create an issue on Github with any Plan you have chosen, we will do our best to answer it. If you have the Entreprise plan, you can contact us directly to our email support.

Github Issues Dedicated Support

Frequently Asked Questions

Do you have a free trial?

Yes, you can choose the Free Plan to test our solution. If you choose a paid Plan, you can unsubscribe anytime and your subscription will automatically end at the end of its period.

How can I subscribe to a paid plan?

To get started, simply create an account and you will automatically be on the Free Plan. Then, go to the Usage & Billing section of your account to upgrade to the Starter or Pro Plan. You can pay using credit card, PayPal, or Google Pay.

If you prefer to receive a quote, we can provide one. Just email us at billing@opencve.io with the quotas you need, and we will send you a personalized quote.

Do you offer monthly and yearly subscriptions?

Yes, you can choose to subscribe monthly or yearly. Yearly subscriptions include 2 bonus months for free.

Is my payment information secure?

Payments are processed by our trusted partner (Paddle). We do not store any credit card information on our servers. All transactions are encrypted and securely handled by the payment providers.

Can I cancel my subscription anytime?

Yes, there is no commitment. If you cancel your subscription, it will stay active until the end of the current billing period. After that, your account automatically switches back to the Free Plan.

For example, if you subscribe on November 14 and cancel on November 18, you keep all paid features until December 14.

How are the quotas applied?

Quotas displayed for each plan are attached to your organization. For subscriptions and notification settings, you are free to distribute them across your projects however you like.

For example, with 15 subscriptions, you could allocate 4 to Backend API, 5 to Mobile App, and 6 to Internal Tools.

Can I use OpenCVE on-premise?

Yes, OpenCVE is open source and can be installed on-premise according to our license terms.

If you prefer a fully managed experience, you can use our SaaS with the plan that best fits your needs. If you use OpenCVE on-premise for commercial purposes (for example, to monitor the products of your own customers or to resell the service), you must purchase a commercial license. Please contact us at billing@opencve.io.