Ned - CVSS Calculator

About

Calculate CVSS v3.1 & v4.0 scores completely offline. Ned is a blazing fast, elegantly designed browser extension built for cybersecurity professionals, pentesters, and vulnerability analysts who need an instant toolkit for their threat-scoring workflow without leaving the current tab.

Most online calculators risk exposing your proprietary threat data to external telemetry. Ned completely blocks all data leakage by operating 100% locally on your machine—no external API calls, tracking, or network traffic are ever sent out.

🌟 Key Features
- Dual Support: Instantly calculate Common Vulnerability Scoring System (CVSS) vectors using the official FIRST.org metrics for both v3.1 and v4.0 standards.
- MITRE CWE Database: A built-in, offline dictionary with advanced fuzzy searching to quickly look up Common Weakness Enumeration IDs (CWE). Search instantly through weakness names, extended descriptions, and alternate terms. Drill down into detailed weaknesses with clean, native expand/collapse dropdowns—no more jumping between tabs to find the right mapping!
- Zero Data Harvesting: Total offline-first privacy. No analytics, no telemetrics, no data collection.
- Copy & Paste Mastery: Click once to instantly copy a generated CVSS vector string or a CWE ID directly to your clipboard. Double-click the vector bar to quickly paste pre-existing strings to update all metric toggles automatically.
- Helpful Tooltips: Hover over complex metrics and CWE names to view detailed official descriptions natively inside the app.
- Persistent State: Ned remembers your selected tabs and exact metric calculations even after the browser window is closed, helping you resume work flawlessly.

💡 Designed for Speed
Built from the ground up to never get in your way. Whether you are generating bug bounty reports, triaging enterprise network alerts, or drafting CVEs, Ned remains the fastest, most private way to grade software vulnerabilities from your browser toolbar.

Open-Source libraries included: Official FIRST.org calculation modules (BSD-2-Clause) & Fuse.js (Apache-2.0).

🐞 v1.4.2 Bug Fix Notes:

- Vector String Edit Deactivation: Fixed the "sticky" edit box. The vector string input now automatically saves and deactivates whenever you click outside of it (via a blur event).

- Escape Key Improvements: Cancelling an edit with the Escape key now correctly resets the edit button's title and icon state.