Vulnerability - Inspector
ContentsSee Also

Vulnerability

Contains details about a specific vulnerability Amazon Inspector can detect.

Contents

id

The ID for the specific vulnerability.

Type: String

Length Constraints: Minimum length of 1.

Required: Yes

atigData

An object that contains information about the Amazon Web Services Threat Intel Group (ATIG) details for the vulnerability.

Type: AtigData object

Required: No

cisaData

An object that contains the Cybersecurity and Infrastructure Security Agency (CISA) details for the vulnerability.

Type: CisaData object

Required: No

cvss2

An object that contains the Common Vulnerability Scoring System (CVSS) Version 2 details for the vulnerability.

Type: Cvss2 object

Required: No

cvss3

An object that contains the Common Vulnerability Scoring System (CVSS) Version 3 details for the vulnerability.

Type: Cvss3 object

Required: No

cwes

The Common Weakness Enumeration (CWE) associated with the vulnerability.

Type: Array of strings

Array Members: Minimum number of 0 items.

Length Constraints: Minimum length of 0.

Required: No

description

A description of the vulnerability.

Type: String

Required: No

detectionPlatforms

Platforms that the vulnerability can be detected on.

Type: Array of strings

Array Members: Minimum number of 0 items. Maximum number of 100 items.

Length Constraints: Minimum length of 1.

Required: No

epss

An object that contains the Exploit Prediction Scoring System (EPSS) score for a vulnerability.

Type: Epss object

Required: No

exploitObserved

An object that contains details on when the exploit was observed.

Type: ExploitObserved object

Required: No

referenceUrls

Links to various resources with more information on this vulnerability.

Type: Array of strings

Array Members: Minimum number of 0 items. Maximum number of 100 items.

Length Constraints: Minimum length of 0.

Required: No

relatedVulnerabilities

A list of related vulnerabilities.

Type: Array of strings

Array Members: Minimum number of 0 items. Maximum number of 100 items.

Length Constraints: Minimum length of 0.

Required: No

source

The source of the vulnerability information. Possible results are RHEL, AMAZON_CVE, DEBIAN or NVD.

Type: String

Valid Values: NVD

Required: No

sourceUrl

A link to the official source material for this vulnerability.

Type: String

Length Constraints: Minimum length of 0.

Required: No

vendorCreatedAt

The date and time when the vendor created this vulnerability.

Type: Timestamp

Required: No

vendorSeverity

The severity assigned by the vendor.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 64.

Required: No

vendorUpdatedAt

The date and time when the vendor last updated this vulnerability.

Type: Timestamp

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: