CPE Dictionary

NIST hosts the Official Common Platform Enumeration (CPE) Dictionary as a product offered in the context of the National Vulnerability Database (NVD). The CPE Dictionary may be used by nongovernmental organizations on a voluntary basis and is not subject to copyright in the United States (although attribution would be appreciated by NIST).

This listing of information technology solutions has been available for use since December of 2009. Any organization can be included through submission to the managing team. Growth information related to this database is also published. (January of 2022 alone experienced an increase in 201 vendors.)

eruditeMETA can also facilitate your organization's listing(s).

CPE itself is a structured naming scheme for information technology systems, software, and packages. Based upon the generic syntax for Uniform Resource Identifiers (URI), CPE includes a formal name format, a method for checking names against a system, and a description format for binding text and tests to a name.

More information can be found by clicking Learn More below.