> ## Documentation Index > Fetch the complete documentation index at: https://docs.binarly.io/llms.txt > Use this file to discover all available pages before exploring further. # Vulnerability Data Sources > Reference for all vulnerability data sources used by the Binarly platform. ## Overview Binarly aggregates vulnerability intelligence from multiple sources, eliminating the need for customers to build and maintain their own multi-source pipeline. Sources can be prioritized per product to utilize [Finding Variants](/user-guides/image-scans/finding-variants) capabilities. **NVD (National Vulnerability Database)** is the primary advisory source. Every other source in this list enriches NVD data by adding language- and package-specific advisories, distribution vendor patches, security research, project-level disclosures, and real-world exploitation intelligence. Together they enable findings to carry accurate severity, exploitability context, and patch status across a wide range of targets. For the best results, sources are matched against the **ecosystem** configured for each product (e.g. Ubuntu, Red Hat, Debian). This allows the platform to cross-reference distribution-specific patches against the relevant advisory sources, ensuring findings reflect the actual patch state of the scanned environment rather than upstream version numbers alone. Source IDs (e.g. `nvd`, `ghsa`, `brly`) appear in API responses and report exports, and can be used to configure [Finding Variants](/user-guides/image-scans/finding-variants) per product. *** ## Primary Source | Source | ID | Description | Link | | ------------------------------- | ----- | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------- | | National Vulnerability Database | `nvd` | The authoritative U.S. government CVE repository maintained by NIST. Provides the canonical CVE identifiers, CVSS scores, and advisory details that all other sources are correlated against. | [nvd.nist.gov](https://nvd.nist.gov/) | *** ## Vulnerability Databases Broad, cross-ecosystem vulnerability databases that complement NVD with independently curated advisory data. | Source | ID | Description | Link | | -------------------------- | ------ | ---------------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------ | | GitHub Security Advisories | `ghsa` | Curated advisories for open-source packages across many ecosystems, published directly by maintainers and the GitHub Security Lab. | [github.com/advisories](https://github.com/advisories) | *** ## Enrichment Sources Sources used to enrich and cross-check the canonical CVE data NVD is built on. | Source | ID | Description | Link | | ----------- | --------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | -------------------------------------------------------------------------- | | CVE List V5 | `cvelist` | The canonical CVE record repository maintained by the CVE Program in the CVE JSON 5.0 format. Provides authoritative CVE descriptions, references, and CNA-assigned metadata used to enrich and cross-check NVD entries. | [github.com/CVEProject/cvelistV5](https://github.com/CVEProject/cvelistV5) | *** ## Language & Package Sources Language and package-manager-specific advisories provide vulnerability data that NVD alone does not always capture with sufficient detail or timeliness. | Source | ID | Description | Link | | ------------------------------- | --------- | --------------------------------------------------------------------------------------------------------------------------- | ------------------------------------------------------------------------------------------------ | | Rust Security Advisory Database | `rustsec` | Community-maintained advisories for Rust crates, covering vulnerabilities in the `crates.io` ecosystem. | [rustsec.org](https://rustsec.org/advisories/) | | Python Security Advisories | `pysec` | Advisories for Python packages distributed via PyPI. | [pypi.org](https://pypi.org/) | | Go Vulnerability Database | `go` | The official Go team vulnerability database covering modules published to the Go module proxy. | [pkg.go.dev/vuln](https://pkg.go.dev/vuln/) | | Haskell Security Advisories | `hsec` | Community-maintained security advisories for Haskell packages on Hackage, maintained by the Haskell Security Response Team. | [github.com/haskell/security-advisories](https://github.com/haskell/security-advisories) | | Python Software Foundation | `psf` | Security disclosures published by the Python Software Foundation. | [python.org](https://www.python.org/) | | R Security Advisories | `rsec` | Security advisories for CRAN and Bioconductor packages, maintained by the R Consortium in OSV format. | [github.com/RConsortium/r-advisory-database](https://github.com/RConsortium/r-advisory-database) | *** ## Distribution Sources Linux distribution vendors often backport security fixes without changing upstream version numbers. These sources allow Binarly to account for patched packages in version-based detection and reduce false positives. | Source | ID | Description | Link | | ------------------------------- | -------- | ------------------------------------------------------------------------------------------------------------------------------ | ------------------------------------------------------------------------- | | Ubuntu Security Notices | `usn` | Canonical's official security advisories for Ubuntu packages. Used to filter patched vulnerabilities in Ubuntu-based binaries. | [ubuntu.com/security/notices](https://ubuntu.com/security/notices) | | Alma Linux Security Advisories | `alsa` | Security errata for AlmaLinux, a RHEL-compatible distribution. | [errata.almalinux.org](https://errata.almalinux.org/) | | Red Hat Security Advisories | `rhsa` | Official Red Hat security errata covering RHEL and related products. *(coming soon)* | [access.redhat.com](https://access.redhat.com/security/security-updates/) | | Rocky Linux Security Advisories | `rlsa` | Security errata for Rocky Linux, a RHEL-compatible community distribution. *(coming soon)* | [errata.rockylinux.org](https://errata.rockylinux.org/) | | Debian Security Advisories | `debian` | Official Debian security tracker covering stable and LTS releases. *(coming soon)* | [security-tracker.debian.org](https://security-tracker.debian.org/) | *** ## Security Vendor Sources | Source | ID | Description | Link | | ------------------------- | ------ | --------------------------------------------------------------------------------------------------------------------------------------------- | --------------------------------- | | Binarly Security Research | `brly` | Original vulnerability research produced by Binarly's REsearch team, including firmware and UEFI disclosures not covered by public databases. | [binarly.io](https://binarly.io/) | *** ## Project Sources Direct vulnerability disclosures maintained by widely-deployed open-source projects. These may include additional context or severity assessments that differ from NVD. | Source | ID | Description | Link | | --------------------------- | --------- | ------------------------------------------------------------ | ---------------------------------------------------------------- | | OpenSSL Security Advisories | `openssl` | Official vulnerability disclosures from the OpenSSL project. | [openssl.org](https://www.openssl.org/news/vulnerabilities.html) | | cURL Security Advisories | `curl` | Vulnerability disclosures maintained by the cURL project. | [curl.se](https://curl.se/docs/security.html) | *** ## Exploitation Intelligence Sources These sources provide signals about whether a vulnerability has been actively exploited in the wild or has known public exploit code. They feed directly into [risk scoring](/resource-center/risk-scoring) and [reachability analysis](/resource-center/reachability), allowing Binarly to surface the highest-priority findings first. | Source | ID | Description | Link | | ------------------------------------ | ------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------------------------------------------------- | | CISA Known Exploited Vulnerabilities | `cisa` | CISA's authoritative catalog of CVEs actively exploited in the wild. Inclusion is a strong prioritization signal. | [cisa.gov/kev](https://www.cisa.gov/known-exploited-vulnerabilities-catalog) | | FIRST EPSS | `first` | The Exploit Prediction Scoring System (EPSS) provides a probability score (0–1) estimating the likelihood a CVE will be exploited within 30 days. | [first.org/epss](https://www.first.org/epss/) | | Exploit Database | `exploit-db` | Offensive Security's public archive of exploit code and proof-of-concept write-ups. | [exploit-db.com](https://www.exploit-db.com) | | Metasploit Framework Modules | `metasploit` | Indicates whether a CVE has a weaponized module in the Metasploit penetration testing framework. | [rapid7.com/metasploit](https://docs.rapid7.com/metasploit/) | | Nomi Sec PoCs | `nomi-sec-pocs` | Aggregated proof-of-concept exploit repositories on GitHub, curated by Nomi Sec. | [github.com/nomi-sec](https://github.com/nomi-sec/PoC-in-GitHub) | | Nuclei Templates | `nuclei-templates` | Project Discovery's library of Nuclei scanner templates, indicating a CVE has a working detection or exploitation template. | [github.com/projectdiscovery](https://github.com/projectdiscovery/nuclei-templates) | *** ## Related * [Finding Variants](/user-guides/image-scans/finding-variants) — Configure alternative data sources per product to override default finding data * [Detection Methods](/resource-center/detection-methods) — How Binarly identifies vulnerabilities using version-based and rule-based detection * [Risk Scoring](/resource-center/risk-scoring) — How exploitation intelligence sources influence finding priority * [Reachability](/resource-center/reachability) — How reachability analysis uses exploitability signals to reduce noise