Cvechecker
cvechecker is an open-source command-line tool for scanning software applications and system packages to identify vulnerabilities and exposure to known exploits. It checks against databases like the NVD and OVAL.
CVE Checker: Identify Vulnerabilities in Software Applications
Open-source command-line tool scanning software applications and system packages for known exploits and vulnerabilities, checking against NVD and OVAL databases.
What is Cvechecker?
cvechecker is an open-source command-line utility that allows users to scan software applications, system packages, containers, and virtual machine images to identify vulnerabilities and exposure to publicly known exploits. It works by checking the software and its dependencies against vulnerability databases like the NVD (National Vulnerability Database) and OVAL (Open Vulnerability and Assessment Language).
Some key features of cvechecker include:
- Scans system packages installed locally (e.g. RPM/Deb packages) or container images/VM images
- Checks software versions against CVE (Common Vulnerabilities and Exposures) details in the NVD
- Uses OVAL checks to identify vulnerable or outdated software
- Provides detailed reports showing vulnerable packages/CVEs and exposure levels
- Help prioritize patching and upgrades to mitigate risks
- Open-source tool written in Go, works across Linux, Windows, and macOS
Overall, cvechecker serves as a handy tool for developers, sysadmins, and security analysts to perform routine checks for known software vulnerabilities either on individual systems or as part of a vulnerability management pipeline. Being command-line based, it can be easily integrated into scripts and automation workflows.
Cvechecker Features
Features
- Scans software for CVEs
- Checks against NVD and OVAL databases
- Command-line interface
- Open source code
- Cross-platform
Pricing
- Open Source
Pros
Free to use
Simple interface
Uses reputable vulnerability databases
Open source for transparency and community contribution
Cons
Command-line only, no GUI
May miss some vulnerabilities not in NVD/OVAL databases
Requires technical knowledge to run scans and interpret results
Official Links
Reviews & Ratings
Login to ReviewThe Best Cvechecker Alternatives
View all cvechecker alternatives with detailed comparison →
Top Security & Privacy and Vulnerability Scanner and other similar apps like Cvechecker
Here are some alternatives to Cvechecker:
Suggest an alternative ❐
Nessus
Nessus is a comprehensive vulnerability scanning software developed by Tenable. It is used to scan networks, operating systems, web applications, databases, and other systems for vulnerabilities that could be exploited by attackers.Some key features of Nessus include:Ability to perform high-speed discovery, mapping, and assessment of vulnerabilities across networks, endpoints, web...
OpenVAS
OpenVAS (Open Vulnerability Assessment System) is a free and open source vulnerability scanner and vulnerability management solution. It can perform network vulnerability tests, system configuration audits and vulnerability detection using the Network Vulnerability Tests (NVT) rules. OpenVAS provides complete tests coverage for IT vulnerabilities with over 50,000 NVTs for vulnerabilities...
OpenSCAP
OpenSCAP is an open-source auditing tool that enables automated security scanning and compliance testing of systems against security benchmarks and policies. It helps organizations maintain continuous monitoring of their infrastructure for vulnerabilities, misconfigurations, and policy compliance issues.Some key features and capabilities of OpenSCAP include:Performs automated scanning for security vulnerabilities based...
Snort
Snort is a free and open-source network intrusion detection system (NIDS) and intrusion prevention system (IPS). It was created in 1998 by Martin Roesch and is now developed by Cisco. Snort analyzes network traffic in real-time and performs protocol analysis, content searching, and matching to detect a variety of attacks...
Dependency-Check
Dependency-Check is an open source software composition analysis and software vulnerability management tool that analyzes project dependencies to identify any known, publicly disclosed vulnerabilities. It works by scanning the binaries and libraries dependencies of applications to detect security issues, outdated software components, and license problems.Dependency-Check supports a wide range of...
VFeed
vFeed is an open-source vulnerability intelligence database that provides up-to-date information on CVEs and security vulnerabilities. It acts as a comprehensive solution for vulnerability assessment, management and data feeds.Key features and capabilities of vFeed include:Aggregation of multiple vulnerability data sources including NVD, Exploit-DB, Metasploit, CAPEC, CWE, WASC etc.In-depth coverage of...
Network Hotfix Scanner
Network Hotfix Scanner is a Windows-based application designed to help IT administrators and managers scan for and identify missing Windows updates across all computers on their network. The software provides an easy way to perform patch auditing and ensure systems are up-to-date with the latest hotfixes and security patches from...
