NIST National Vulnerability Database Integration

Document created by Susan Read-Miller Employee on Jul 28, 2018Last modified by Susan Read-Miller Employee on Aug 20, 2019
Version 9Show Document
  • View in full screen mode


The NIST National Vulnerability Database (NVD) is the U.S. government repository of standards-based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance. NVD includes databases of security checklists, security related software flaws, misconfigurations, product names, and impact metrics. 


The integration of NVD with the RSA Archer IT & Security Vulnerabilities Program use case enables customers to connect the NVD catalog of vulnerabilities using the CVE standard to the asset information within RSA Archer.


Updated: August, 2019


Integration Features

The NIST NVD integration with RSA Archer enables organizations to:

  • Catalogs vulnerabilities using the Common Vulnerability Enumeration (CVE) standard defined by the US Government
  • Builds a base Vulnerability Library recognized as the de facto standard in the security industry
  • Supports NVD’s JSON CVE data feed format


Solution and Platform Information


For More Information

To learn more about the NIST NVD RSA Ready certified integration:


For Additional Support

For questions regarding the NIST National Vulnerability Database, please visit their websiteTo engage an RSA technical support team member with questions regarding this integration, please open a support case.