Every CVE, every source, one feed.
Kronos Vault pulls vulnerabilities from NVD, MITRE, GitHub Security Advisories and CISA KEV in real time, deduplicates them across sources, enriches them with severity & exploit context, and pings you the moment one matches your stack.
How it works
Continuously ingests every published CVE, fuses duplicates by ID, and routes only the ones that matter to you.
Aggregate
Continuous polling of NVD, MITRE, GHSA and CISA KEV catalogs.
Deduplicate
Cross-source merge by CVE-ID, preserving each source's raw payload.
Alert
Watchlists trigger email, webhook and push notifications instantly.
Main features
Built for security teams who can't afford to miss one.
Unified CVE catalog
Old and new CVEs in a single searchable feed with full history.
Cross-source dedupe
Same CVE-ID across NVD, GHSA, MITRE → one canonical record.
Smart watchlists
Filter by vendor, product, keyword, severity, CVSS threshold.
Realtime alerts
Email, webhook (HMAC-signed) and Web Push delivery.
Auto enrichment
Severity, CVSS, CWE mappings, KEV/ransomware flags.
Sub-minute ingestion
New CVEs available in your feed within minutes of publication.
Data sources
Four upstream feeds. One source of truth.
NVD 2.0
Full NIST National Vulnerability Database with CVSS v3.1.
MITRE CVE List
Authoritative CVE identifier registry, polled continuously.
GitHub Security Advisories
Open-source ecosystem vulnerabilities (npm, PyPI, Maven, …).
CISA KEV
Known Exploited Vulnerabilities catalog with ransomware flags.
Alerts where you already work.
Per-CVE or daily digest. Bilingual subject lines supported.
Webhook
HMAC-SHA256 signed POST to your endpoint. Retries on failure.
Web Push
VAPID browser push for laptops & phones, no app required.
Pricing
One plan. Everything included.
Cancel anytime. 30-day money-back guarantee.
Kronos Vault Pro — for security teams that can't miss one.
- Unlimited watchlists
- All sources (NVD, MITRE, GHSA, CISA KEV)
- Real-time email, webhook & web-push alerts
- Full CVE history & search
- Per-user isolated data