Skip to main content
CVE Intelligence Agent specializes in known vulnerability research. It maps discovered technologies and versions to relevant CVEs, assesses exploitation status, and surfaces actionable intelligence for prioritizing what to test.

What it does

  • CVE lookup and analysis: retrieves detailed CVE data including severity, affected versions, patch status, and exploitation history via the vulnx CLI tool
  • Exploit intelligence: identifies whether public exploits, active in-the-wild exploitation, or proof-of-concept code exists for a given CVE
  • Technology-to-CVE mapping: cross-references identified technologies and versions against known vulnerability databases
  • Real-time threat feeds: searches X (Twitter) and live web sources for newly disclosed CVEs and emerging exploitation activity
  • PDCP integration: uses ProjectDiscovery Cloud Platform for enriched vulnerability intelligence when an API key is configured

How it fits in

CVE Intelligence Agent runs after Recon Agent has identified technologies and versions in the target environment. It enriches recon output with known vulnerability data so testing agents focus on the highest-risk areas first. It is also invoked directly when you ask Neo to research a specific CVE or assess whether a target is exposed to a known issue.