Skip to content

Adding CVEs to Your Watchlist

There are three ways to add a CVE to your watchlist, depending on where you are in the platform.

From CVE Search Results

The fastest way to watchlist a CVE you find during research:

  1. Perform a CVE search from the search page.
  2. Find the CVE in the results list.
  3. Click the bookmark icon on the right side of the result card.
  4. The icon turns green, confirming the CVE is now on your watchlist.

To remove it, click the bookmark icon again. It reverts to the default state.

From the CVE Detail Page

When you are reviewing a specific CVE in depth:

  1. Open the CVE detail page (by clicking a result, following a link, or navigating directly).
  2. Click the Watch button in the CVE header area, next to the CVE ID.
  3. The button changes state to indicate the CVE is watched.

This is useful when you are deep-reading a CVE and decide mid-review that you want to track it.

Via API

For programmatic watchlist management:

curl -X POST \
  -H "Authorization: Bearer bs_live_..." \
  -H "Content-Type: application/json" \
  -d '{"cve_id": "CVE-2025-32433"}' \
  "https://breachspider.com/api/v1/watchlist"

Response:

{
  "status": "success",
  "data": {
    "id": 42,
    "cve_id": "CVE-2025-32433",
    "added_at": "2026-06-07T12:00:00Z",
    "current_bcs": 9.8,
    "current_epss": 0.97,
    "kev_flagged": true
  }
}

To remove a CVE from the watchlist via API:

curl -X DELETE \
  -H "Authorization: Bearer bs_live_..." \
  "https://breachspider.com/api/v1/watchlist/42"

To list all watched CVEs:

curl -H "Authorization: Bearer bs_live_..." \
  "https://breachspider.com/api/v1/watchlist"

Managing Your Watchlist

Navigate to Watchlist in the left sidebar to see all your watched CVEs.

The list shows:

  • CVE ID and BSID
  • Severity badge
  • Current BCS, CVSS, and EPSS scores
  • KEV and exploit maturity badges
  • Date added to your watchlist
  • Last intelligence update date

Sorting: Sort by BCS score, CVSS score, EPSS, date added, or last updated.

Removing: Click the green bookmark icon on any item to remove it from your watchlist. The CVE remains in the BreachSpider corpus -- it is just no longer tracked on your personal list.

Testing an Alert

Each watchlist item has a test alert button (bell icon). Click it to send a test notification to all your configured alert destinations for watchlist events.

Use this to verify that your Teams, Slack, email, or webhook integration is working correctly before a real watchlist alert fires.

curl -X POST \
  -H "Authorization: Bearer bs_live_..." \
  "https://breachspider.com/api/v1/watchlist/42/test-alert"

Bulk Watchlist Operations

To add multiple CVEs at once, use the search page:

  1. Perform a search with your desired filters (e.g., vendor = Siemens, severity = CRITICAL).
  2. Click the bookmark icon on each relevant result.

There is no bulk-add button in the UI currently. For bulk operations, use the API in a loop:

for cve in CVE-2025-32433 CVE-2025-12345 CVE-2024-98765; do
  curl -s -X POST \
    -H "Authorization: Bearer bs_live_..." \
    -H "Content-Type: application/json" \
    -d "{\"cve_id\": \"$cve\"}" \
    "https://breachspider.com/api/v1/watchlist"
done