Terms of Use

About vuln.today

vuln.today was created to help security professionals, system administrators, SOC analysts, and CISOs stay on top of the rapidly growing number of publicly disclosed vulnerabilities (CVEs). Our goal is to aggregate data from publicly available sources, enrich it with AI-powered analysis, and present it in a way that allows faster triage and prioritization of potential threats.

The service is designed as a supplementary tool for security teams , not a replacement for official vulnerability databases, vendor advisories, or professional security assessments.

Data Accuracy & Disclaimer

The information presented on vuln.today is collected and processed automatically from publicly available sources, including but not limited to the National Vulnerability Database (NVD), CVE.org, Exploit-DB, and other public security advisories.

Parts of the content , including vulnerability summaries, severity assessments, vendor/product associations, tag classifications, ATT&CK technique mappings, and priority scores , are generated or enriched using artificial intelligence (large language models). AI-generated content may contain errors, inaccuracies, or incorrect associations.

Specifically, but not limited to:

  • Vendor and product tags may be incorrectly assigned
  • Severity ratings and priority scores are calculated estimates, not authoritative assessments
  • EPSS, CVSS, and other scores are sourced from third parties and may be outdated or inaccurate
  • Patch availability information may not reflect the current state
  • Relationships between CVEs, CWEs, and ATT&CK techniques are approximate mappings
  • Vulnerability summaries may misrepresent the original advisory

vuln.today must not be treated as the sole source of truth. Every piece of information should be independently verified against official vendor advisories and authoritative vulnerability databases before making security decisions.

No Warranty

The service is provided "as is" and "as available", without any warranties of any kind, whether express or implied, including but not limited to warranties of accuracy, completeness, reliability, fitness for a particular purpose, or non-infringement.

The operator of vuln.today shall not be held liable for any damages, losses, or consequences , whether direct, indirect, incidental, special, or consequential , arising from the use of or reliance on any information provided by this service. This includes, but is not limited to, damages resulting from incorrect data, missing information, delayed updates, service downtime, or any decisions made based on the content presented on this website.

Users acknowledge that vulnerability management decisions should always be based on multiple sources and professional judgment, and that vuln.today is only one of many tools that can assist in this process.

Prohibited Use

The information published on vuln.today is intended exclusively for lawful, defensive security purposes , including vulnerability management, risk assessment, patch prioritization, security research, and educational use.

It is strictly prohibited to use information obtained from this service to:

  • Exploit vulnerabilities in systems you do not own or have explicit authorization to test
  • Conduct unauthorized access, intrusion, or any activity that violates applicable laws
  • Develop malware, exploit kits, or offensive tools intended for illegal use
  • Cause harm, disruption, or damage to any systems, networks, or individuals
  • Engage in any activity that violates local, national, or international laws and regulations

The operator of vuln.today bears no responsibility for any actions taken by users based on the information provided by this service. Users are solely responsible for ensuring that their use of vulnerability information complies with all applicable laws and regulations in their jurisdiction. Any illegal use of the information is entirely the responsibility of the user.

Data Sources

vuln.today aggregates and interprets publicly available vulnerability data. We do not claim ownership of the underlying data. All CVE identifiers are managed by the CVE Program. NVD data is provided by NIST. All trademarks, product names, and company names mentioned on this site belong to their respective owners.

The interpretation, enrichment, scoring, and presentation of this data is the work of vuln.today and does not represent the views or assessments of the original data providers.

Changes to These Terms

We reserve the right to modify these terms at any time without prior notice. Continued use of the service after any changes constitutes acceptance of the updated terms.

Last updated: March 13, 2026

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy