Class: Aws::SecurityHub::Types::Vulnerability

Inherits:
Struct
  • Object
show all
Includes:
Aws::Structure
Defined in:
lib/aws-sdk-securityhub/types.rb

Overview

A vulnerability associated with a finding.

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#code_vulnerabilitiesArray<Types::VulnerabilityCodeVulnerabilities>

The vulnerabilities found in your Lambda function code. This field pertains to findings that Security Hub CSPM receives from Amazon Inspector.



35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#cvssArray<Types::Cvss>

CVSS scores from the advisory related to the vulnerability.

Returns:



35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#epss_scoreFloat

The Exploit Prediction Scoring System (EPSS) score for a finding.

Returns:

  • (Float)


35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#exploit_availableString

Whether an exploit is available for a finding.

Returns:

  • (String)


35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#fix_availableString

Specifies if all vulnerable packages in a finding have a value for FixedInVersion and Remediation. This field is evaluated for each vulnerability Id based on the number of vulnerable packages that have a value for both FixedInVersion and Remediation. Valid values are as follows:

  • YES if all vulnerable packages have a value for both FixedInVersion and Remediation

  • NO if no vulnerable packages have a value for FixedInVersion and Remediation

  • PARTIAL otherwise

Returns:

  • (String)


35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#idString

The identifier of the vulnerability.

Returns:

  • (String)


35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#last_known_exploit_atString

The date and time of the last exploit associated with a finding discovered in your environment.

Returns:

  • (String)


35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#reference_urlsArray<String>

A list of URLs that provide additional information about the vulnerability.

Returns:

  • (Array<String>)


35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

List of vulnerabilities that are related to this vulnerability.

Returns:

  • (Array<String>)


35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#vendorTypes::VulnerabilityVendor

Information about the vendor that generates the vulnerability report.



35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end

#vulnerable_packagesArray<Types::SoftwarePackage>

List of software packages that have the vulnerability.

Returns:



35267
35268
35269
35270
35271
35272
35273
35274
35275
35276
35277
35278
35279
35280
35281
# File 'lib/aws-sdk-securityhub/types.rb', line 35267

class Vulnerability < Struct.new(
  :id,
  :vulnerable_packages,
  :cvss,
  :related_vulnerabilities,
  :vendor,
  :reference_urls,
  :fix_available,
  :epss_score,
  :exploit_available,
  :last_known_exploit_at,
  :code_vulnerabilities)
  SENSITIVE = []
  include Aws::Structure
end