News

RSS Feed

Vulnerability Report - March 2025

All vulnerability reports Introduction This vulnerability report has been generated using data aggregated on Vulnerability-Lookup, with contributions from the platform’s community.

Read more →

April 1, 2025

Vulnerability-Lookup 2.7.0 released

We’re delighted to announce the release of Vulnerability-Lookup 2.7.0, packed with new features, enhancements, and bug fixes. There should have been a video here but your browser does not seem to support it. What’s New Vendor and Product Management Added support for extending or aliasing CPE names, allowing vendor and product names to be mapped. This addresses the issue of CPE fragmentation or inconsistency, where an organization might have multiple vendor names, or a single product is referenced by different CPE identifiers (e.g., "cpe:/a:oracle:java" vs. "cpe:/a:sun:java" for the same product).

Read more →

March 27, 2025

Vulnerability Report - February 2025

All vulnerability reports Introduction This vulnerability report has been generated using data aggregated on Vulnerability-Lookup, with contributions from the platform’s community.

Read more →

March 1, 2025

LLMs + Vulnerability-Lookup: What We're Testing and Where We're Headed

Everyone’s talking about AI, NLP and LLMs these days, and, to be honest, so are we! Recently, we’ve been exploring how LLMs can help us make sense of the massive amount of vulnerability data we collect and improve vulnerability management—while always remembering that AI is just a tool, not a solution on its own! The picture below gives a glimpse of what we’ve tested so far.

Read more →

February 26, 2025

Vulnerability-Lookup 2.6.0 released

Vulnerability-Lookup 2.6.0 Released — Advanced monitoring tools for administrators of Vulnerability-Lookup instances. This release includes new features, better monitoring, improvements and fixes. What’s New Centralized monitoring service This feature adds log and process heartbeat reporting to a Valkey datastore, enabling centralized monitoring of Vulnerability-Lookup’s system health and its various components. (#106) This new feature is essential for monitoring our expanding suite of tools used to collect vulnerability-related information.

Read more →

February 14, 2025

Vulnerability-Lookup 2.5.0 released

Vulnerability-Lookup 2.5.0 Released — Track vulnerabilities effortlessly with product watch lists & email notifications! We’re excited to share the latest features designed to make vulnerability tracking even more efficient. 🚀 What’s New 🆕 Email Notifications (Product Watch List) Stay ahead with hourly, daily, or weekly alerts for new or updated vulnerabilities affecting the vendors and products you care about. Notifications come in both HTML and plain text, with CSV attachments detailing vulnerabilities, sightings, and comments. (#101)

Read more →

February 7, 2025

Vulnerability Report – January 2025

All vulnerability reports Introduction This vulnerability report has been generated using data aggregated on Vulnerability-Lookup, with contributions from the platform’s community.

Read more →

February 1, 2025

The Shadowserver Foundation Honeypot Feed is now integrated as a source of sightings in Vulnerability-Lookup

We are glad to announce the immediate availability of vulnerability-related observations from The Shadowserver Foundation within Vulnerability-Lookup. This milestone wouldn’t have been possible without Piotr Kijewski. We developed a new sighting client, ShadowSight. This new client gathers vulnerability-related data directly from The Shadowserver Foundation, then reports the collected data to the Vulnerability-Lookup API as sightings. ShadowSight leverages insights on common vulnerabilities and exploited vulnerabilities from Shadowserver’s honeypot source. The source code of ShadowSight is available:

Read more →

January 22, 2025

Expanding Sources of Security Advisories and Sightings in Vulnerability-Lookup

Security Advisories We’ve recently added new correlating sources for Security Advisories: Microsoft CSAF Security Advisories: https://vulnerability.circl.lu/recent#csaf_microsoft We’ve also added a new source from Fraunhofer FKIE, which provides a community reconstruction of the legacy JSON NVD Data Feeds (at the end it’s more information). This is accessible at: https://vulnerability.circl.lu/recent#fkie_nvd One of the core strengths of Vulnerability-Lookup is its ability to correlate these new sources with existing ones. For example, you can view how vulnerabilities like CVE-2025-21385 appear across multiple sources:

Read more →

January 16, 2025

Vulnerability-Lookup 2.4.0 released

We’re really thrilled to unveil Vulnerability-Lookup 2.4.0! 🚀 There should have been a video here but your browser does not seem to support it. This version includes new features, new importers, improvements and fixes. The key updates are highlighted below. 🔍 New Dashboard: Quickly access the top sighted vulnerabilities from the past month with a real-time, filterable interface. 📊 New Correlations Graph: Visualize relationships between sightings for deeper insights.

Read more →

January 10, 2025

Prev 3/5 Next 5/5