class Aws::SecurityHub::Types::Vulnerability

A vulnerability associated with a finding.

@note When making an API call, you may pass Vulnerability

data as a hash:

    {
      id: "NonEmptyString", # required
      vulnerable_packages: [
        {
          name: "NonEmptyString",
          version: "NonEmptyString",
          epoch: "NonEmptyString",
          release: "NonEmptyString",
          architecture: "NonEmptyString",
          package_manager: "NonEmptyString",
          file_path: "NonEmptyString",
        },
      ],
      cvss: [
        {
          version: "NonEmptyString",
          base_score: 1.0,
          base_vector: "NonEmptyString",
          source: "NonEmptyString",
          adjustments: [
            {
              metric: "NonEmptyString",
              reason: "NonEmptyString",
            },
          ],
        },
      ],
      related_vulnerabilities: ["NonEmptyString"],
      vendor: {
        name: "NonEmptyString", # required
        url: "NonEmptyString",
        vendor_severity: "NonEmptyString",
        vendor_created_at: "NonEmptyString",
        vendor_updated_at: "NonEmptyString",
      },
      reference_urls: ["NonEmptyString"],
    }

@!attribute [rw] id

The identifier of the vulnerability.
@return [String]

@!attribute [rw] vulnerable_packages

List of software packages that have the vulnerability.
@return [Array<Types::SoftwarePackage>]

@!attribute [rw] cvss

CVSS scores from the advisory related to the vulnerability.
@return [Array<Types::Cvss>]

@!attribute [rw] related_vulnerabilities

List of vulnerabilities that are related to this vulnerability.
@return [Array<String>]

@!attribute [rw] vendor

Information about the vendor that generates the vulnerability
report.
@return [Types::VulnerabilityVendor]

@!attribute [rw] reference_urls

A list of URLs that provide additional information about the
vulnerability.
@return [Array<String>]

@see docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/Vulnerability AWS API Documentation

Constants

SENSITIVE