The Vulnerability Details object describes characteristics of an observed vulnerability.
Attributes
Section titled “Attributes”cve
- Type:
cve - Requirement: required
The Common Vulnerabilities and Exposures (CVE).
references
- Type:
string_t - Requirement: recommended
Supporting reference URLs
related_vulnerabilities
- Type:
string_t - Requirement: recommended
List of vulnerabilities that are related to this vulnerability.
desc
- Type:
string_t - Requirement: optional
The description of the vulnerability.
fix_available
- Type:
boolean_t - Requirement: optional
Indicates if a fix is available for the reported vulnerability.
kb_articles
- Type:
string_t - Requirement: optional
The KB article/s related to the entity
packages
- Type:
package - Requirement: optional
List of vulnerable packages as identified by the security product
severity
- Type:
string_t - Requirement: optional
The event severity, normalized to the caption of the severity_id value. In the case of ‘Other’, it is defined by the event source.
title
- Type:
string_t - Requirement: optional
The title of the vulnerability.
vendor_name
- Type:
string_t - Requirement: optional
The vendor who identified the vulnerability.