Interface VulnerabilityNoteOrBuilder (2.9.0)

The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.

float cvss_score = 1;

The full description of the CVSSv3 for this vulnerability.

.grafeas.v1.CVSSv3 cvss_v3 = 4;

The full description of the CVSSv3 for this vulnerability.

.grafeas.v1.CVSSv3 cvss_v3 = 4;

CVSS version used to populate cvss_score and severity.

.grafeas.v1.CVSSVersion cvss_version = 7;

CVSS version used to populate cvss_score and severity.

.grafeas.v1.CVSSVersion cvss_version = 7;

Details of all known distros and packages affected by this vulnerability.

repeated .grafeas.v1.VulnerabilityNote.Detail details = 3;

Details of all known distros and packages affected by this vulnerability.

repeated .grafeas.v1.VulnerabilityNote.Detail details = 3;

Details of all known distros and packages affected by this vulnerability.

repeated .grafeas.v1.VulnerabilityNote.Detail details = 3;

Details of all known distros and packages affected by this vulnerability.

repeated .grafeas.v1.VulnerabilityNote.Detail details = 3;

Details of all known distros and packages affected by this vulnerability.

repeated .grafeas.v1.VulnerabilityNote.Detail details = 3;

The note provider assigned severity of this vulnerability.

.grafeas.v1.Severity severity = 2;

The note provider assigned severity of this vulnerability.

.grafeas.v1.Severity severity = 2;

The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.

.google.protobuf.Timestamp source_update_time = 6;

The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.

.google.protobuf.Timestamp source_update_time = 6;

Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

repeated .grafeas.v1.VulnerabilityNote.WindowsDetail windows_details = 5;

Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

repeated .grafeas.v1.VulnerabilityNote.WindowsDetail windows_details = 5;

Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

repeated .grafeas.v1.VulnerabilityNote.WindowsDetail windows_details = 5;

Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

repeated .grafeas.v1.VulnerabilityNote.WindowsDetail windows_details = 5;

Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.

repeated .grafeas.v1.VulnerabilityNote.WindowsDetail windows_details = 5;

The full description of the CVSSv3 for this vulnerability.

.grafeas.v1.CVSSv3 cvss_v3 = 4;

The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.

.google.protobuf.Timestamp source_update_time = 6;