Low Severity
Published: Jul 16, 2025

[GitHub] CVE-KGRAG

Other
Type
N/A
CVSS Score
2
Views
Anonymous
Author

Description

Hybrid Knowledge Graph + RAG security intelligence platform for CVE analytics and semantic search. Llama3 integrated.


<!-- PROJECT LOGO -->
<br />
<p align="center">
<a href="https://github.com/Yuni0217/CVE-KGRAG">
</a>
<br />

<!-- Badges -->
<img src="https://img.shields.io/github/repo-size/Yuning-J/CVE-KGRAG?style=for-the-badge" alt="GitHub repo size" height="25">
<img src="https://img.shields.io/github/last-commit/Yuning-J/CVE-KGRAG?style=for-the-badge" alt="GitHub last commit" height="25">
<img src="https://img.shields.io/github/license/Yuning-J/CVE-KGRAG?style=for-the-badge" alt="License" height="25">
<br />

<h3 align="center">CVE-KGRAG</h3>
<p align="center">
CVE Knowledge Graph & Security Intelligence System with Enhanced RAG
</p>
</p>

This project combines a comprehensive knowledge graph for structured vulnerability data and relationships with an enhanced Retrieval-Augmented Generation (RAG) system for semantic search. We automate the process of curation, processing and correlation of CVE, CPE, CWE, CAPEC, MITRE ATT&CK, ExploitDB, CISA and other threat intelligence data.


## Current Statistics (Latest)

### **Knowledge Graph Coverage (1999-2025)**
- **190,310 CVEs** with rich metadata (CVSS, affected products, CWE, CAPEC, MITRE mappings)
- **124,290 products** from **19,692 vendors**
- **458 CWEs**, **428 CAPECs**, **169 MITRE techniques**, **37 MITRE tactics**
- **2.4M+ relationships** between entities
- **80% have CVSS v3** scores (152,676 CVEs)
- **1,060 CVEs** in Known Exploited Vulnerabilities (KEV) list

### **NetworkX Graph Statistics**
- **335,178 nodes** (CVEs, Products, Vendors, CWEs, CAPECs)
- **1,126,306 edges** (relationships between entities)
- **246 vulnerability clusters** based on CWE and product relationships
- **Graph density**: 0.000010 (sparse, efficient graph structure)

### **Severity Distribution**
- **CRITICAL**: 23,552 CVEs
- **HIGH**: 60,367 CVEs
- **MEDIUM**: 66,086 CVEs
- **LOW**: 2,671 CVEs
- **UNKNOWN**: 37,634 CVEs

### **Top Vendors by Vulnerability Count**
1. **HP**: 14,569 vulnerabilities
2. **Intel**: 10

References

Community Rating
0

Login to rate this exploit

Quick Actions
Related Exploits
Low IBM Plugin - Other...
Low Mozilla Office - Dos...
Low Cisco Flash - Buffer Overflow...