Class VulnerabilityOccurrence

An occurrence of a severity vulnerability on a resource.

Inheritance
object
VulnerabilityOccurrence
Implements
Inherited Members
Namespace: Google.Apis.ContainerAnalysis.v1.Data
Assembly: Google.Apis.ContainerAnalysis.v1.dll
Syntax
public class VulnerabilityOccurrence : IDirectResponseSchema

Properties

CvssScore

Output only. The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.

Declaration
[JsonProperty("cvssScore")]
public virtual float? CvssScore { get; set; }
Property Value
Type Description
float?

CvssV2

The cvss v2 score for the vulnerability.

Declaration
[JsonProperty("cvssV2")]
public virtual CVSS CvssV2 { get; set; }
Property Value
Type Description
CVSS

CvssVersion

Output only. CVSS version used to populate cvss_score and severity.

Declaration
[JsonProperty("cvssVersion")]
public virtual string CvssVersion { get; set; }
Property Value
Type Description
string

Cvssv3

The cvss v3 score for the vulnerability.

Declaration
[JsonProperty("cvssv3")]
public virtual CVSS Cvssv3 { get; set; }
Property Value
Type Description
CVSS

ETag

The ETag of the item.

Declaration
public virtual string ETag { get; set; }
Property Value
Type Description
string

EffectiveSeverity

The distro assigned severity for this vulnerability when it is available, otherwise this is the note provider assigned severity. When there are multiple PackageIssues for this vulnerability, they can have different effective severities because some might be provided by the distro while others are provided by the language ecosystem for a language pack. For this reason, it is advised to use the effective severity on the PackageIssue level. In the case where multiple PackageIssues have differing effective severities, this field should be the highest severity for any of the PackageIssues.

Declaration
[JsonProperty("effectiveSeverity")]
public virtual string EffectiveSeverity { get; set; }
Property Value
Type Description
string

ExtraDetails

Occurrence-specific extra details about the vulnerability.

Declaration
[JsonProperty("extraDetails")]
public virtual string ExtraDetails { get; set; }
Property Value
Type Description
string

FixAvailable

Output only. Whether at least one of the affected packages has a fix available.

Declaration
[JsonProperty("fixAvailable")]
public virtual bool? FixAvailable { get; set; }
Property Value
Type Description
bool?

LongDescription

Output only. A detailed description of this vulnerability.

Declaration
[JsonProperty("longDescription")]
public virtual string LongDescription { get; set; }
Property Value
Type Description
string

PackageIssue

Required. The set of affected locations and their fixes (if available) within the associated resource.

Declaration
[JsonProperty("packageIssue")]
public virtual IList<PackageIssue> PackageIssue { get; set; }
Property Value
Type Description
IList<PackageIssue>

RelatedUrls

Output only. URLs related to this vulnerability.

Declaration
[JsonProperty("relatedUrls")]
public virtual IList<RelatedUrl> RelatedUrls { get; set; }
Property Value
Type Description
IList<RelatedUrl>

Severity

Output only. The note provider assigned severity of this vulnerability.

Declaration
[JsonProperty("severity")]
public virtual string Severity { get; set; }
Property Value
Type Description
string

ShortDescription

Output only. A one sentence description of this vulnerability.

Declaration
[JsonProperty("shortDescription")]
public virtual string ShortDescription { get; set; }
Property Value
Type Description
string

Type

The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).

Declaration
[JsonProperty("type")]
public virtual string Type { get; set; }
Property Value
Type Description
string

VexAssessment

Declaration
[JsonProperty("vexAssessment")]
public virtual VexAssessment VexAssessment { get; set; }
Property Value
Type Description
VexAssessment

Implements