Vulnerability - Inspector
ContentsSee Also
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Vulnerability

Contains details about a specific vulnerability Amazon Inspector can detect.

Contents

id

The ID for the specific vulnerability.

Type: String

Length Constraints: Minimum length of 1.

Required: Yes

atigData

An object that contains information about the Amazon Web Services Threat Intel Group (ATIG) details for the vulnerability.

Type: AtigData object

Required: No

cisaData

An object that contains the Cybersecurity and Infrastructure Security Agency (CISA) details for the vulnerability.

Type: CisaData object

Required: No

cvss2

An object that contains the Common Vulnerability Scoring System (CVSS) Version 2 details for the vulnerability.

Type: Cvss2 object

Required: No

cvss3

An object that contains the Common Vulnerability Scoring System (CVSS) Version 3 details for the vulnerability.

Type: Cvss3 object

Required: No

cwes

The Common Weakness Enumeration (CWE) associated with the vulnerability.

Type: Array of strings

Array Members: Minimum number of 0 items.

Length Constraints: Minimum length of 0.

Required: No

description

A description of the vulnerability.

Type: String

Required: No

detectionPlatforms

Platforms that the vulnerability can be detected on.

Type: Array of strings

Array Members: Minimum number of 0 items. Maximum number of 100 items.

Length Constraints: Minimum length of 1.

Required: No

epss

An object that contains the Exploit Prediction Scoring System (EPSS) score for a vulnerability.

Type: Epss object

Required: No

exploitObserved

An object that contains details on when the exploit was observed.

Type: ExploitObserved object

Required: No

referenceUrls

Links to various resources with more information on this vulnerability.

Type: Array of strings

Array Members: Minimum number of 0 items. Maximum number of 100 items.

Length Constraints: Minimum length of 0.

Required: No

relatedVulnerabilities

A list of related vulnerabilities.

Type: Array of strings

Array Members: Minimum number of 0 items. Maximum number of 100 items.

Length Constraints: Minimum length of 0.

Required: No

source

The source of the vulnerability information. Possible results are RHEL, AMAZON_CVE, DEBIAN or NVD.

Type: String

Valid Values: NVD

Required: No

sourceUrl

A link to the official source material for this vulnerability.

Type: String

Length Constraints: Minimum length of 0.

Required: No

vendorCreatedAt

The date and time when the vendor created this vulnerability.

Type: Timestamp

Required: No

vendorSeverity

The severity assigned by the vendor.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 64.

Required: No

vendorUpdatedAt

The date and time when the vendor last updated this vulnerability.

Type: Timestamp

Required: No

See Also

For more information about using this API in one of the language-specific Amazon SDKs, see the following: