Firewall CVE Lookup

A CVE (Common Vulnerabilities and Exposures) is a public identifier assigned to a specific security flaw in a product. Each CVE gets a description, references, and one or more CVSS scores that quantify exploitability and impact. The NVD (National Vulnerability Database, maintained by NIST) is the authoritative source of CVE data.

CVSS v3 base score runs 0.0–10.0. Critical = 9.0–10.0 (treat as P0; patch within 48h). High = 7.0–8.9 (P1; patch in next maintenance window). Medium = 4.0–6.9 (P2; plan it). Low = 0.1–3.9 (track). Always factor in environmental context: a critical CVE on an internet-facing management interface is far more urgent than the same CVE on a fully air-gapped lab device.

Three reasons: (1) the firmware version is so new the research community hasn't published CVEs yet — keep watching the vendor advisory feed; (2) the CPE string we generate doesn't match exactly (vendor naming quirks happen); (3) the version is truly clean. If you're on a long-term-support build with active maintenance, "0" is good news.