This is a dataset of Vulnerabilities identified in Open-Source Software and reported to National Vulnerability Database (NVD) since January 1, 2010.

Data is updated automatically every month on the first day.

You can use this dataset for performing data analysis and predicting the vulnerability type based on the descriptions provided, making it an ideal project for beginners and intermediates in NLP.

Common Terminologies

1. CVE: Common Vulnerability Enumeration - A unique identifier for all the vulnerabilities reported to NVD.
2. CWE: Common Weakness Enumeration - A unique identifier for all the types of vulnerabilities that can exist in the source code. [For example, CWE-120 stands for Buffer Overflow] For the entire list of CWEs, visit https://cwe.mitre.org/data/index.html
3. CPE: Common Platform Enumeration - https://en.wikipedia.org/wiki/Common_Platform_Enumeration gives a better explanation.

View the code used to generate the dataset on Github