Pilih preferensi cookie Anda

Kami menggunakan cookie penting serta alat serupa yang diperlukan untuk menyediakan situs dan layanan. Kami menggunakan cookie performa untuk mengumpulkan statistik anonim sehingga kami dapat memahami cara pelanggan menggunakan situs dan melakukan perbaikan. Cookie penting tidak dapat dinonaktifkan, tetapi Anda dapat mengklik “Kustom” atau “Tolak” untuk menolak cookie performa.

Jika Anda setuju, AWS dan pihak ketiga yang disetujui juga akan menggunakan cookie untuk menyediakan fitur situs yang berguna, mengingat preferensi Anda, dan menampilkan konten yang relevan, termasuk iklan yang relevan. Untuk menerima atau menolak semua cookie yang tidak penting, klik “Terima” atau “Tolak”. Untuk membuat pilihan yang lebih detail, klik “Kustomisasi”.

Preferensi
Hubungi Kami
Umpan Balik
AWS Documentation
Buat Akun AWS
Vulnerability - AWS Security Hub
ContentsSee Also
Halaman ini belum diterjemahkan ke dalam bahasa Anda. Minta terjemahan

Vulnerability

PDF

A vulnerability associated with a finding.

Contents

Id

The identifier of the vulnerability.

Type: String

Pattern: .*\S.*

Required: Yes

CodeVulnerabilities

The vulnerabilities found in your AWS Lambda function code. This field pertains to findings that AWS Security Hub receives from Amazon Inspector.

Type: Array of VulnerabilityCodeVulnerabilities objects

Required: No

Cvss

CVSS scores from the advisory related to the vulnerability.

Type: Array of Cvss objects

Required: No

EpssScore

The Exploit Prediction Scoring System (EPSS) score for a finding.

Type: Double

Required: No

ExploitAvailable

Whether an exploit is available for a finding.

Type: String

Valid Values: YES | NO

Required: No

FixAvailable

Specifies if all vulnerable packages in a finding have a value for FixedInVersion and Remediation. This field is evaluated for each vulnerability Id based on the number of vulnerable packages that have a value for both FixedInVersion and Remediation. Valid values are as follows:

  • YES if all vulnerable packages have a value for both FixedInVersion and Remediation

  • NO if no vulnerable packages have a value for FixedInVersion and Remediation

  • PARTIAL otherwise

Type: String

Valid Values: YES | NO | PARTIAL

Required: No

LastKnownExploitAt

The date and time of the last exploit associated with a finding discovered in your environment.

Type: String

Pattern: .*\S.*

Required: No

ReferenceUrls

A list of URLs that provide additional information about the vulnerability.

Type: Array of strings

Pattern: .*\S.*

Required: No

RelatedVulnerabilities

List of vulnerabilities that are related to this vulnerability.

Type: Array of strings

Pattern: .*\S.*

Required: No

Vendor

Information about the vendor that generates the vulnerability report.

Type: VulnerabilityVendor object

Required: No

VulnerablePackages

List of software packages that have the vulnerability.

Type: Array of SoftwarePackage objects

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following:

Topik sebelumnya:

UserAccount

Perlu bantuan?

PrivasiSyarat situsPreferensi cookie
© 2025, Amazon Web Services, Inc. atau afiliasinya. Semua hak dilindungi undang-undang.