Class: Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability

Inherits:

Object

• Object
• Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability

Extended by:

Protobuf::MessageExts::ClassMethods

Includes:

Protobuf::MessageExts

Defined in:

proto_docs/google/cloud/osconfig/v1alpha/vulnerability.rb

Overview

A vulnerability affecting the VM instance.

Defined Under Namespace

Classes: Details, Item

Instance Attribute Summary

• #available_inventory_item_ids ⇒ ::Array<::String> deprecated Deprecated.

  This field is deprecated and may be removed in the next major version update.

• #create_time ⇒ ::Google::Protobuf::Timestamp

  The timestamp for when the vulnerability was first detected.

• #details ⇒ ::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details

  Contains metadata as per the upstream feed of the operating system and NVD.

• #installed_inventory_item_ids ⇒ ::Array<::String> deprecated Deprecated.

  This field is deprecated and may be removed in the next major version update.

• #items ⇒ ::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Item>

  List of items affected by the vulnerability.

• #update_time ⇒ ::Google::Protobuf::Timestamp

  The timestamp for when the vulnerability was last modified.

Instance Attribute Details

#available_inventory_item_ids ⇒ ::Array<::String>

Deprecated.

This field is deprecated and may be removed in the next major version update.

Returns Corresponds to the AVAILABLE_PACKAGE inventory item on the VM. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. If there is no available fix, the field is empty. The inventory_item value specifies the latest SoftwarePackage available to the VM that fixes the vulnerability.

Returns:

• (::Array<::String>) —

  Corresponds to the AVAILABLE_PACKAGE inventory item on the VM. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. If there is no available fix, the field is empty. The inventory_item value specifies the latest SoftwarePackage available to the VM that fixes the vulnerability.

# File 'proto_docs/google/cloud/osconfig/v1alpha/vulnerability.rb', line 77

class Vulnerability
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Contains metadata information for the vulnerability. This information is
  # collected from the upstream feed of the operating system.
  # @!attribute [rw] cve
  #   @return [::String]
  #     The CVE of the vulnerability. CVE cannot be
  #     empty and the combination of <cve, classification> should be unique
  #     across vulnerabilities for a VM.
  # @!attribute [rw] cvss_v2_score
  #   @return [::Float]
  #     The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of
  #     0 - 10 where 0 indicates low severity and 10 indicates high severity.
  # @!attribute [rw] cvss_v3
  #   @return [::Google::Cloud::OsConfig::V1alpha::CVSSv3]
  #     The full description of the CVSSv3 for this vulnerability from NVD.
  # @!attribute [rw] severity
  #   @return [::String]
  #     Assigned severity/impact ranking from the distro.
  # @!attribute [rw] description
  #   @return [::String]
  #     The note or description describing the vulnerability from the distro.
  # @!attribute [rw] references
  #   @return [::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details::Reference>]
  #     Corresponds to the references attached to the `VulnerabilityDetails`.
  class Details
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # A reference for this vulnerability.
    # @!attribute [rw] url
    #   @return [::String]
    #     The url of the reference.
    # @!attribute [rw] source
    #   @return [::String]
    #     The source of the reference e.g. NVD.
    class Reference
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # OS inventory item that is affected by a vulnerability or fixed as a
  # result of a vulnerability.
  # @!attribute [rw] installed_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM.
  #     This field displays the inventory items affected by this vulnerability.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. For some
  #     operating systems, this field might be empty.
  # @!attribute [rw] available_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. If there is no
  #     available fix, the field is empty. The `inventory_item` value specifies
  #     the latest `SoftwarePackage` available to the VM that fixes the
  #     vulnerability.
  # @!attribute [rw] fixed_cpe_uri
  #   @return [::String]
  #     The recommended [CPE URI](https://cpe.mitre.org/specification/) update
  #     that contains a fix for this vulnerability.
  # @!attribute [rw] upstream_fix
  #   @return [::String]
  #     The upstream OS patch, packages or KB that fixes the vulnerability.
  class Item
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end

#create_time ⇒ ::Google::Protobuf::Timestamp

Returns The timestamp for when the vulnerability was first detected.

Returns:

• (::Google::Protobuf::Timestamp) —

  The timestamp for when the vulnerability was first detected.

# File 'proto_docs/google/cloud/osconfig/v1alpha/vulnerability.rb', line 77

class Vulnerability
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Contains metadata information for the vulnerability. This information is
  # collected from the upstream feed of the operating system.
  # @!attribute [rw] cve
  #   @return [::String]
  #     The CVE of the vulnerability. CVE cannot be
  #     empty and the combination of <cve, classification> should be unique
  #     across vulnerabilities for a VM.
  # @!attribute [rw] cvss_v2_score
  #   @return [::Float]
  #     The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of
  #     0 - 10 where 0 indicates low severity and 10 indicates high severity.
  # @!attribute [rw] cvss_v3
  #   @return [::Google::Cloud::OsConfig::V1alpha::CVSSv3]
  #     The full description of the CVSSv3 for this vulnerability from NVD.
  # @!attribute [rw] severity
  #   @return [::String]
  #     Assigned severity/impact ranking from the distro.
  # @!attribute [rw] description
  #   @return [::String]
  #     The note or description describing the vulnerability from the distro.
  # @!attribute [rw] references
  #   @return [::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details::Reference>]
  #     Corresponds to the references attached to the `VulnerabilityDetails`.
  class Details
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # A reference for this vulnerability.
    # @!attribute [rw] url
    #   @return [::String]
    #     The url of the reference.
    # @!attribute [rw] source
    #   @return [::String]
    #     The source of the reference e.g. NVD.
    class Reference
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # OS inventory item that is affected by a vulnerability or fixed as a
  # result of a vulnerability.
  # @!attribute [rw] installed_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM.
  #     This field displays the inventory items affected by this vulnerability.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. For some
  #     operating systems, this field might be empty.
  # @!attribute [rw] available_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. If there is no
  #     available fix, the field is empty. The `inventory_item` value specifies
  #     the latest `SoftwarePackage` available to the VM that fixes the
  #     vulnerability.
  # @!attribute [rw] fixed_cpe_uri
  #   @return [::String]
  #     The recommended [CPE URI](https://cpe.mitre.org/specification/) update
  #     that contains a fix for this vulnerability.
  # @!attribute [rw] upstream_fix
  #   @return [::String]
  #     The upstream OS patch, packages or KB that fixes the vulnerability.
  class Item
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end

#details ⇒ ::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details

Returns Contains metadata as per the upstream feed of the operating system and NVD.

Returns:

• (::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details) —

  Contains metadata as per the upstream feed of the operating system and NVD.

# File 'proto_docs/google/cloud/osconfig/v1alpha/vulnerability.rb', line 77

class Vulnerability
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Contains metadata information for the vulnerability. This information is
  # collected from the upstream feed of the operating system.
  # @!attribute [rw] cve
  #   @return [::String]
  #     The CVE of the vulnerability. CVE cannot be
  #     empty and the combination of <cve, classification> should be unique
  #     across vulnerabilities for a VM.
  # @!attribute [rw] cvss_v2_score
  #   @return [::Float]
  #     The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of
  #     0 - 10 where 0 indicates low severity and 10 indicates high severity.
  # @!attribute [rw] cvss_v3
  #   @return [::Google::Cloud::OsConfig::V1alpha::CVSSv3]
  #     The full description of the CVSSv3 for this vulnerability from NVD.
  # @!attribute [rw] severity
  #   @return [::String]
  #     Assigned severity/impact ranking from the distro.
  # @!attribute [rw] description
  #   @return [::String]
  #     The note or description describing the vulnerability from the distro.
  # @!attribute [rw] references
  #   @return [::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details::Reference>]
  #     Corresponds to the references attached to the `VulnerabilityDetails`.
  class Details
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # A reference for this vulnerability.
    # @!attribute [rw] url
    #   @return [::String]
    #     The url of the reference.
    # @!attribute [rw] source
    #   @return [::String]
    #     The source of the reference e.g. NVD.
    class Reference
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # OS inventory item that is affected by a vulnerability or fixed as a
  # result of a vulnerability.
  # @!attribute [rw] installed_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM.
  #     This field displays the inventory items affected by this vulnerability.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. For some
  #     operating systems, this field might be empty.
  # @!attribute [rw] available_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. If there is no
  #     available fix, the field is empty. The `inventory_item` value specifies
  #     the latest `SoftwarePackage` available to the VM that fixes the
  #     vulnerability.
  # @!attribute [rw] fixed_cpe_uri
  #   @return [::String]
  #     The recommended [CPE URI](https://cpe.mitre.org/specification/) update
  #     that contains a fix for this vulnerability.
  # @!attribute [rw] upstream_fix
  #   @return [::String]
  #     The upstream OS patch, packages or KB that fixes the vulnerability.
  class Item
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end

#installed_inventory_item_ids ⇒ ::Array<::String>

Deprecated.

This field is deprecated and may be removed in the next major version update.

Returns Corresponds to the INSTALLED_PACKAGE inventory item on the VM. This field displays the inventory items affected by this vulnerability. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. For some distros, this field may be empty.

Returns:

• (::Array<::String>) —

  Corresponds to the INSTALLED_PACKAGE inventory item on the VM. This field displays the inventory items affected by this vulnerability. If the vulnerability report was not updated after the VM inventory update, these values might not display in VM inventory. For some distros, this field may be empty.

# File 'proto_docs/google/cloud/osconfig/v1alpha/vulnerability.rb', line 77

class Vulnerability
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Contains metadata information for the vulnerability. This information is
  # collected from the upstream feed of the operating system.
  # @!attribute [rw] cve
  #   @return [::String]
  #     The CVE of the vulnerability. CVE cannot be
  #     empty and the combination of <cve, classification> should be unique
  #     across vulnerabilities for a VM.
  # @!attribute [rw] cvss_v2_score
  #   @return [::Float]
  #     The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of
  #     0 - 10 where 0 indicates low severity and 10 indicates high severity.
  # @!attribute [rw] cvss_v3
  #   @return [::Google::Cloud::OsConfig::V1alpha::CVSSv3]
  #     The full description of the CVSSv3 for this vulnerability from NVD.
  # @!attribute [rw] severity
  #   @return [::String]
  #     Assigned severity/impact ranking from the distro.
  # @!attribute [rw] description
  #   @return [::String]
  #     The note or description describing the vulnerability from the distro.
  # @!attribute [rw] references
  #   @return [::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details::Reference>]
  #     Corresponds to the references attached to the `VulnerabilityDetails`.
  class Details
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # A reference for this vulnerability.
    # @!attribute [rw] url
    #   @return [::String]
    #     The url of the reference.
    # @!attribute [rw] source
    #   @return [::String]
    #     The source of the reference e.g. NVD.
    class Reference
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # OS inventory item that is affected by a vulnerability or fixed as a
  # result of a vulnerability.
  # @!attribute [rw] installed_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM.
  #     This field displays the inventory items affected by this vulnerability.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. For some
  #     operating systems, this field might be empty.
  # @!attribute [rw] available_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. If there is no
  #     available fix, the field is empty. The `inventory_item` value specifies
  #     the latest `SoftwarePackage` available to the VM that fixes the
  #     vulnerability.
  # @!attribute [rw] fixed_cpe_uri
  #   @return [::String]
  #     The recommended [CPE URI](https://cpe.mitre.org/specification/) update
  #     that contains a fix for this vulnerability.
  # @!attribute [rw] upstream_fix
  #   @return [::String]
  #     The upstream OS patch, packages or KB that fixes the vulnerability.
  class Item
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end

#items ⇒ ::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Item>

Returns List of items affected by the vulnerability.

Returns:

• (::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Item>) —

  List of items affected by the vulnerability.

# File 'proto_docs/google/cloud/osconfig/v1alpha/vulnerability.rb', line 77

class Vulnerability
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Contains metadata information for the vulnerability. This information is
  # collected from the upstream feed of the operating system.
  # @!attribute [rw] cve
  #   @return [::String]
  #     The CVE of the vulnerability. CVE cannot be
  #     empty and the combination of <cve, classification> should be unique
  #     across vulnerabilities for a VM.
  # @!attribute [rw] cvss_v2_score
  #   @return [::Float]
  #     The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of
  #     0 - 10 where 0 indicates low severity and 10 indicates high severity.
  # @!attribute [rw] cvss_v3
  #   @return [::Google::Cloud::OsConfig::V1alpha::CVSSv3]
  #     The full description of the CVSSv3 for this vulnerability from NVD.
  # @!attribute [rw] severity
  #   @return [::String]
  #     Assigned severity/impact ranking from the distro.
  # @!attribute [rw] description
  #   @return [::String]
  #     The note or description describing the vulnerability from the distro.
  # @!attribute [rw] references
  #   @return [::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details::Reference>]
  #     Corresponds to the references attached to the `VulnerabilityDetails`.
  class Details
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # A reference for this vulnerability.
    # @!attribute [rw] url
    #   @return [::String]
    #     The url of the reference.
    # @!attribute [rw] source
    #   @return [::String]
    #     The source of the reference e.g. NVD.
    class Reference
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # OS inventory item that is affected by a vulnerability or fixed as a
  # result of a vulnerability.
  # @!attribute [rw] installed_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM.
  #     This field displays the inventory items affected by this vulnerability.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. For some
  #     operating systems, this field might be empty.
  # @!attribute [rw] available_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. If there is no
  #     available fix, the field is empty. The `inventory_item` value specifies
  #     the latest `SoftwarePackage` available to the VM that fixes the
  #     vulnerability.
  # @!attribute [rw] fixed_cpe_uri
  #   @return [::String]
  #     The recommended [CPE URI](https://cpe.mitre.org/specification/) update
  #     that contains a fix for this vulnerability.
  # @!attribute [rw] upstream_fix
  #   @return [::String]
  #     The upstream OS patch, packages or KB that fixes the vulnerability.
  class Item
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end

#update_time ⇒ ::Google::Protobuf::Timestamp

Returns The timestamp for when the vulnerability was last modified.

Returns:

• (::Google::Protobuf::Timestamp) —

  The timestamp for when the vulnerability was last modified.

# File 'proto_docs/google/cloud/osconfig/v1alpha/vulnerability.rb', line 77

class Vulnerability
  include ::Google::Protobuf::MessageExts
  extend ::Google::Protobuf::MessageExts::ClassMethods

  # Contains metadata information for the vulnerability. This information is
  # collected from the upstream feed of the operating system.
  # @!attribute [rw] cve
  #   @return [::String]
  #     The CVE of the vulnerability. CVE cannot be
  #     empty and the combination of <cve, classification> should be unique
  #     across vulnerabilities for a VM.
  # @!attribute [rw] cvss_v2_score
  #   @return [::Float]
  #     The CVSS V2 score of this vulnerability. CVSS V2 score is on a scale of
  #     0 - 10 where 0 indicates low severity and 10 indicates high severity.
  # @!attribute [rw] cvss_v3
  #   @return [::Google::Cloud::OsConfig::V1alpha::CVSSv3]
  #     The full description of the CVSSv3 for this vulnerability from NVD.
  # @!attribute [rw] severity
  #   @return [::String]
  #     Assigned severity/impact ranking from the distro.
  # @!attribute [rw] description
  #   @return [::String]
  #     The note or description describing the vulnerability from the distro.
  # @!attribute [rw] references
  #   @return [::Array<::Google::Cloud::OsConfig::V1alpha::VulnerabilityReport::Vulnerability::Details::Reference>]
  #     Corresponds to the references attached to the `VulnerabilityDetails`.
  class Details
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods

    # A reference for this vulnerability.
    # @!attribute [rw] url
    #   @return [::String]
    #     The url of the reference.
    # @!attribute [rw] source
    #   @return [::String]
    #     The source of the reference e.g. NVD.
    class Reference
      include ::Google::Protobuf::MessageExts
      extend ::Google::Protobuf::MessageExts::ClassMethods
    end
  end

  # OS inventory item that is affected by a vulnerability or fixed as a
  # result of a vulnerability.
  # @!attribute [rw] installed_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `INSTALLED_PACKAGE` inventory item on the VM.
  #     This field displays the inventory items affected by this vulnerability.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. For some
  #     operating systems, this field might be empty.
  # @!attribute [rw] available_inventory_item_id
  #   @return [::String]
  #     Corresponds to the `AVAILABLE_PACKAGE` inventory item on the VM.
  #     If the vulnerability report was not updated after the VM inventory
  #     update, these values might not display in VM inventory. If there is no
  #     available fix, the field is empty. The `inventory_item` value specifies
  #     the latest `SoftwarePackage` available to the VM that fixes the
  #     vulnerability.
  # @!attribute [rw] fixed_cpe_uri
  #   @return [::String]
  #     The recommended [CPE URI](https://cpe.mitre.org/specification/) update
  #     that contains a fix for this vulnerability.
  # @!attribute [rw] upstream_fix
  #   @return [::String]
  #     The upstream OS patch, packages or KB that fixes the vulnerability.
  class Item
    include ::Google::Protobuf::MessageExts
    extend ::Google::Protobuf::MessageExts::ClassMethods
  end
end