Cvefeed Insights

CVEFeed Insights automatically detects CVE identifiers (e.g., CVE-2024-1234) on any webpage and
enriches them with real-time vulnerability intelligence from CVEFeed.io.

★ Automatic CVE Detection — Scans pages for CVE IDs and highlights them with a subtle purple badge
so you never miss a vulnerability reference.

★ Rich Tooltip on Hover — Hover over any highlighted CVE to see:
• CVSS score and severity (Critical, High, Medium, Low)
• Vulnerability description
• CISA KEV status (Known Exploited Vulnerabilities)
• Ransomware campaign association
• CWE classification
• Affected products and vendors
• Published and last modified dates

★ CISA KEV Alerts — Instantly see if a CVE is listed in the CISA Known Exploited Vulnerabilities
catalog, with remediation due dates.

★ Dark Mode Support — Automatically adapts to your system theme. Also supports manual
light/dark/auto toggle in settings.

★ Privacy Focused — No tracking, no analytics. The extension only communicates with the CVEFeed.io
API to fetch vulnerability data for detected CVEs.

★ Optional API Token — Works out of the box on the free anonymous tier. Sign up at cvefeed.io for
higher rate limits.

HOW IT WORKS:
1. Browse any webpage (security advisories, bug trackers, forums, blogs)
2. CVE IDs are automatically highlighted in purple
3. Hover over a highlighted CVE to see full vulnerability details
4. Click the CVE ID in the tooltip to view the full report on CVEFeed.io

IDEAL FOR:
• Security researchers and analysts
• Penetration testers
• SOC analysts and incident responders
• Developers reviewing security advisories
• Anyone who reads CVE references regularly

PERMISSIONS:
• "storage" — Saves your preferences locally
• "activeTab" — Accesses the current tab to scan for CVE IDs
• "host_permissions: cvefeed.io/api/*" — Fetches vulnerability data from CVEFeed.io