class Nexpose::VulnerabilityDefinition

Vulnerability definition object. Represents a known vulnerability on a given Nexpose console.

Attributes

cves[R]

The CVEs for the vulnerability.

cvss_exploit_score[R]

Base score for the exploitability of a vulnerability that is used to compute the overall CVSS score.

cvss_impact_score[R]

Base score for the impact of a vulnerability that is used to compute the overall CVSS score.

cvss_score[R]

CVSS score of the vulnerability. Value between 0.0 and 10.0.

cvss_vector[R]

Full CVSS vector in CVSS Version 2.0 notation.

date_added[R]

Date the vulnerability was first checked by Nexpose.

date_published[R]

Date the vulnerability was publicized by the third-party, vendor, or another authoring source.

denial_of_service[R]

Whether the vulnerability is classified as a denial-of-service vuln.

description[R]

Vulnerability description, usually formated in HTML.

id[R]

Unique identifier of a vulnerability definition.

pci_severity_score[R]

PCI severity score of the vulnerability, measured on a scale of 1 to 5.

pci_status[R]

Whether the presence of the vulnerability can cause PCI failure. One of: Pass, Fail.

riskscore[R]

Risk score associated with vulnerability.

severity[R]

Severity category. One of: Critical, Severe, Moderate.

severity_score[R]

Severity score, in the range of 0.0 to 10.0.

title[R]

Vulnerability title.

Public Class Methods

load(nsc, id) click to toggle source

Load a vulnerability definition from the provided console.

@param [Connection] nsc Active connection to a Nexpose console. @param [String] id Unique identifier of a vulnerability definition. @return [VulnerabilityDefinition] The requested vulnerability definition, if found.

# File lib/nexpose/vuln_def.rb, line 123
def self.load(nsc, id)
  uri  = "/api/2.0/vulnerability_definitions/#{id}"
  resp = AJAX.get(nsc, uri, AJAX::CONTENT_TYPE::JSON)
  hash = JSON.parse(resp, symbolize_names: true)
  new.object_from_hash(nsc, hash)
end