This is the Trace Id: a29fed98cf7902263dc04ec306f09cd0
Skip to main content Report Security Vulnerability Report Abuse Report Infringement Submission FAQs Reporting Vulnerability Security Update Guide Exploitability index Developer API documentation Frequently Asked Questions Technical Security Notifications Glossary Microsoft Bug Bounty Programs Microsoft Active Protections Program BlueHat Security Conference Researcher Recognition Program Windows Security Servicing Criteria Researcher Resource Center Mission Cyber Defense Operations Center Coordinated Vulnerability Disclosure Social Microsoft Security Response Center Security Research & Defense BlueHat Conference Blog Security Researcher Acknowledgments Online Services Researcher Acknowledgments AI Safety Acknowledgements Security Researcher Leaderboard

Announcing the CVRF API 3.0 upgrade

Japan Security Team
/ By Japan Security Team /

At the Microsoft Security Response Center, we are committed to continuously improving the security and performance of our services to meet the evolving needs of our customers. We are excited to announce the rollout of the latest version of our Common Vulnerability Reporting (CVRF) API. This update brings improvements in both security and performance, without requiring any changes to your existing invocation methods. While updating the PowerShell module is optional, it can provide some additional performance benefits.  

Faster response times

The CVRF API 3.0 offers significant performance improvements over its predecessor (2.0). When running code that performs multiple queries, you’ll experience noticeably faster response times. 

Optional PowerShell update for direct access

While it’s not required to update your PowerShell module, doing so can provide additional performance benefits. Without the update, your requests will go to the 2.0 URL, which will then redirect to the 3.0 URL. By updating your PowerShell module, your requests go directly to the 3.0 URL, eliminating the need for redirection and further enhancing performance. 

To take advantage of these improvements, we recommend updating your PowerShell module using the steps below: 

  1. Set-PsRepository -Name PSGallery -InstallationPolicy Trusted 

  2. Uninstall-Module -Name MsrcSecurityUpdates 

  3. Install-Module -Name MsrcSecurityUpdates -Force -SkipPublisherCheck 

For more detailed examples and information, visit our GiHub repository.  

Enhanced security 

The new API is rewritten in a new format and hosted on a more reliable platform, providing enhanced security. Choosing to remain on the old API will mean customers becoming more susceptible to security incidents. Upgrading to the new API ensures you benefit from these security improvements. 

Staying within rate limits With the faster 3.0 version, there’s a chance you might inadvertently exceed the API rate limit. If you encounter the error message “Too many follow-up requests: 21”, consider adjusting your query frequency. Staying within the rate limits ensures a smooth experience. 

This upgrade empowers you with improved performance and security. We encourage you to explore the new capabilities and make the most of our CVRF API. As always, we welcome feedback on this new feature and other improvements here.

Surface Pro Surface Laptop Surface Laptop Studio 2 Copilot for organizations Copilot for personal use AI in Windows Explore Microsoft products Windows 11 apps Account profile Download Center Microsoft Store support Returns Order tracking Certified Refurbished Microsoft Store Promise Flexible Payments Microsoft in education Devices for education Microsoft Teams for Education Microsoft 365 Education How to buy for your school Educator training and development Deals for students and parents AI for education
Microsoft AI Microsoft Security Dynamics 365 Microsoft 365 Microsoft Power Platform Microsoft Teams Microsoft 365 Copilot Small Business Azure Microsoft Developer Microsoft Learn Support for AI marketplace apps Microsoft Tech Community Microsoft Marketplace Marketplace Rewards Visual Studio Careers About Microsoft Company news Privacy at Microsoft Investors Diversity and inclusion Accessibility Sustainability
English (United States)
Your Privacy Choices Opt-Out Icon Your Privacy Choices
Consumer Health Privacy Sitemap Contact Microsoft Privacy Manage cookies Terms of use Trademarks Safety & eco Recycling About our ads