catalog

Pack: cisa-kev · Endpoint: https://gateway.pipeworx.io/cisa-kev/mcp

Full KEV catalog (metadata + entries).

Example call

curl -X POST https://gateway.pipeworx.io/cisa-kev/mcp \
  -H 'Content-Type: application/json' \
  -d '{"jsonrpc":"2.0","id":1,"method":"tools/call","params":{"name":"catalog","arguments":{}}}'

Response shape

Always returns: vulnerabilities

FieldTypeDescription
titlestringCatalog title
catalogVersionstringCatalog version
dateReleasedstringRelease date
countnumberTotal vulnerability count
vulnerabilitiesarrayArray of known exploited vulnerabilities
Full JSON Schema 
{
  "type": "object",
  "properties": {
    "title": {
      "type": "string",
      "description": "Catalog title"
    },
    "catalogVersion": {
      "type": "string",
      "description": "Catalog version"
    },
    "dateReleased": {
      "type": "string",
      "description": "Release date"
    },
    "count": {
      "type": "number",
      "description": "Total vulnerability count"
    },
    "vulnerabilities": {
      "type": "array",
      "description": "Array of known exploited vulnerabilities",
      "items": {
        "type": "object",
        "properties": {
          "cveID": {
            "type": "string",
            "description": "CVE identifier"
          },
          "vendorProject": {
            "type": "string",
            "description": "Vendor or project name"
          },
          "product": {
            "type": "string",
            "description": "Product name"
          },
          "vulnerabilityName": {
            "type": "string",
            "description": "Vulnerability name"
          },
          "dateAdded": {
            "type": "string",
            "description": "Date added to catalog (ISO format)"
          },
          "shortDescription": {
            "type": "string",
            "description": "Brief vulnerability description"
          },
          "requiredAction": {
            "type": "string",
            "description": "Recommended action"
          },
          "dueDate": {
            "type": "string",
            "description": "Due date for remediation"
          },
          "knownRansomwareCampaignUse": {
            "type": "string",
            "description": "Known ransomware campaign use"
          },
          "notes": {
            "type": "string",
            "description": "Additional notes"
          },
          "cwes": {
            "type": "array",
            "items": {
              "type": "string"
            },
            "description": "Related CWE identifiers"
          }
        },
        "required": [
          "cveID",
          "vendorProject",
          "product",
          "vulnerabilityName",
          "dateAdded",
          "shortDescription",
          "requiredAction",
          "dueDate"
        ]
      }
    }
  },
  "required": [
    "vulnerabilities"
  ]
}

Connect

Add this to your MCP client config, or use one-click install buttons:

{
  "mcpServers": {
    "cisa-kev": {
      "url": "https://gateway.pipeworx.io/cisa-kev/mcp"
    }
  }
}

See Getting Started for client-specific install steps.

Regenerated from source · build May 21, 2026