Enum SimulatedFinding.Severity (0.22.0)

public enum SimulatedFinding.Severity extends Enum<SimulatedFinding.Severity> implements ProtocolMessageEnum

The severity of the finding.

Protobuf enum google.cloud.securitycentermanagement.v1.SimulatedFinding.Severity

Implements

ProtocolMessageEnum

Static Fields

Name Description
CRITICAL

For vulnerabilities: A critical vulnerability is easily discoverable by an external actor, exploitable, and results in the direct ability to execute arbitrary code, exfiltrate data, and otherwise gain additional access and privileges to cloud resources and workloads. Examples include publicly accessible unprotected user data and public SSH access with weak or no passwords.

For threats: Indicates a threat that is able to access, modify, or delete data or execute unauthorized code within existing resources.

CRITICAL = 1;

CRITICAL_VALUE

For vulnerabilities: A critical vulnerability is easily discoverable by an external actor, exploitable, and results in the direct ability to execute arbitrary code, exfiltrate data, and otherwise gain additional access and privileges to cloud resources and workloads. Examples include publicly accessible unprotected user data and public SSH access with weak or no passwords.

For threats: Indicates a threat that is able to access, modify, or delete data or execute unauthorized code within existing resources.

CRITICAL = 1;

HIGH

For vulnerabilities: A high-risk vulnerability can be easily discovered and exploited in combination with other vulnerabilities in order to gain direct access and the ability to execute arbitrary code, exfiltrate data, and otherwise gain additional access and privileges to cloud resources and workloads. An example is a database with weak or no passwords that is only accessible internally. This database could easily be compromised by an actor that had access to the internal network.

For threats: Indicates a threat that is able to create new computational resources in an environment but not able to access data or execute code in existing resources.

HIGH = 2;

HIGH_VALUE

For vulnerabilities: A high-risk vulnerability can be easily discovered and exploited in combination with other vulnerabilities in order to gain direct access and the ability to execute arbitrary code, exfiltrate data, and otherwise gain additional access and privileges to cloud resources and workloads. An example is a database with weak or no passwords that is only accessible internally. This database could easily be compromised by an actor that had access to the internal network.

For threats: Indicates a threat that is able to create new computational resources in an environment but not able to access data or execute code in existing resources.

HIGH = 2;

LOW

For vulnerabilities: A low-risk vulnerability hampers a security organization's ability to detect vulnerabilities or active threats in their deployment, or prevents the root cause investigation of security issues. An example is monitoring and logs being disabled for resource configurations and access.

For threats: Indicates a threat that has obtained minimal access to an environment but is not able to access data, execute code, or create resources.

LOW = 4;

LOW_VALUE

For vulnerabilities: A low-risk vulnerability hampers a security organization's ability to detect vulnerabilities or active threats in their deployment, or prevents the root cause investigation of security issues. An example is monitoring and logs being disabled for resource configurations and access.

For threats: Indicates a threat that has obtained minimal access to an environment but is not able to access data, execute code, or create resources.

LOW = 4;

MEDIUM

For vulnerabilities: A medium-risk vulnerability could be used by an actor to gain access to resources or privileges that enable them to eventually (through multiple steps or a complex exploit) gain access and the ability to execute arbitrary code or exfiltrate data. An example is a service account with access to more projects than it should have. If an actor gains access to the service account, they could potentially use that access to manipulate a project the service account was not intended to.

For threats: Indicates a threat that is able to cause operational impact but may not access data or execute unauthorized code.

MEDIUM = 3;

MEDIUM_VALUE

For vulnerabilities: A medium-risk vulnerability could be used by an actor to gain access to resources or privileges that enable them to eventually (through multiple steps or a complex exploit) gain access and the ability to execute arbitrary code or exfiltrate data. An example is a service account with access to more projects than it should have. If an actor gains access to the service account, they could potentially use that access to manipulate a project the service account was not intended to.

For threats: Indicates a threat that is able to cause operational impact but may not access data or execute unauthorized code.

MEDIUM = 3;

SEVERITY_UNSPECIFIED

Default value. This value is unused.

SEVERITY_UNSPECIFIED = 0;

SEVERITY_UNSPECIFIED_VALUE

Default value. This value is unused.

SEVERITY_UNSPECIFIED = 0;

UNRECOGNIZED

Static Methods

Name Description
forNumber(int value)
getDescriptor()
internalGetValueMap()
valueOf(Descriptors.EnumValueDescriptor desc)
valueOf(int value)

Deprecated. Use #forNumber(int) instead.

valueOf(String name)
values()

Methods

Name Description
getDescriptorForType()
getNumber()
getValueDescriptor()