Vulnerability
data class VulnerabilityNoteArgs(val cvssScore: Output<Double>? = null, val cvssV2: Output<CVSSArgs>? = null, val cvssV3: Output<CVSSv3Args>? = null, val cvssVersion: Output<VulnerabilityNoteCvssVersion>? = null, val details: Output<List<DetailArgs>>? = null, val severity: Output<VulnerabilityNoteSeverity>? = null, val sourceUpdateTime: Output<String>? = null, val windowsDetails: Output<List<WindowsDetailArgs>>? = null) : ConvertibleToJava<VulnerabilityNoteArgs>
A security vulnerability that can be found in resources.
Constructors
Link copied to clipboard
constructor(cvssScore: Output<Double>? = null, cvssV2: Output<CVSSArgs>? = null, cvssV3: Output<CVSSv3Args>? = null, cvssVersion: Output<VulnerabilityNoteCvssVersion>? = null, details: Output<List<DetailArgs>>? = null, severity: Output<VulnerabilityNoteSeverity>? = null, sourceUpdateTime: Output<String>? = null, windowsDetails: Output<List<WindowsDetailArgs>>? = null)
Properties
Link copied to clipboard
The full description of the CVSSv3 for this vulnerability.
Link copied to clipboard
CVSS version used to populate cvss_score and severity.
Link copied to clipboard
Details of all known distros and packages affected by this vulnerability.
Link copied to clipboard
The note provider assigned severity of this vulnerability.
Link copied to clipboard
The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
Link copied to clipboard
Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.