Reference documentation and code samples for the Grafeas V1 Client class VulnerabilityNote.
A security vulnerability that can be found in resources.
Generated from protobuf message grafeas.v1.VulnerabilityNote
Namespace
Grafeas \ V1Methods
__construct
Constructor.
| Parameters | |
|---|---|
| Name | Description |
data |
array
Optional. Data for populating the Message object. |
↳ cvss_score |
float
The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity. |
↳ severity |
int
The note provider assigned severity of this vulnerability. |
↳ details |
array<VulnerabilityNote\Detail>
Details of all known distros and packages affected by this vulnerability. |
↳ cvss_v3 |
CVSSv3
The full description of the CVSSv3 for this vulnerability. |
↳ windows_details |
array<VulnerabilityNote\WindowsDetail>
Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version. |
↳ source_update_time |
Google\Protobuf\Timestamp
The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker. |
↳ cvss_version |
int
CVSS version used to populate cvss_score and severity. |
↳ cvss_v2 |
CVSS
The full description of the v2 CVSS for this vulnerability. |
getCvssScore
The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
| Returns | |
|---|---|
| Type | Description |
float |
|
setCvssScore
The CVSS score of this vulnerability. CVSS score is on a scale of 0 - 10 where 0 indicates low severity and 10 indicates high severity.
| Parameter | |
|---|---|
| Name | Description |
var |
float
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getSeverity
The note provider assigned severity of this vulnerability.
| Returns | |
|---|---|
| Type | Description |
int |
|
setSeverity
The note provider assigned severity of this vulnerability.
| Parameter | |
|---|---|
| Name | Description |
var |
int
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getDetails
Details of all known distros and packages affected by this vulnerability.
| Returns | |
|---|---|
| Type | Description |
Google\Protobuf\Internal\RepeatedField |
|
setDetails
Details of all known distros and packages affected by this vulnerability.
| Parameter | |
|---|---|
| Name | Description |
var |
array<VulnerabilityNote\Detail>
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getCvssV3
The full description of the CVSSv3 for this vulnerability.
| Returns | |
|---|---|
| Type | Description |
CVSSv3|null |
|
hasCvssV3
clearCvssV3
setCvssV3
The full description of the CVSSv3 for this vulnerability.
| Parameter | |
|---|---|
| Name | Description |
var |
CVSSv3
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getWindowsDetails
Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
| Returns | |
|---|---|
| Type | Description |
Google\Protobuf\Internal\RepeatedField |
|
setWindowsDetails
Windows details get their own format because the information format and model don't match a normal detail. Specifically Windows updates are done as patches, thus Windows vulnerabilities really are a missing package, rather than a package being at an incorrect version.
| Parameter | |
|---|---|
| Name | Description |
var |
array<VulnerabilityNote\WindowsDetail>
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getSourceUpdateTime
The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
| Returns | |
|---|---|
| Type | Description |
Google\Protobuf\Timestamp|null |
|
hasSourceUpdateTime
clearSourceUpdateTime
setSourceUpdateTime
The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
| Parameter | |
|---|---|
| Name | Description |
var |
Google\Protobuf\Timestamp
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getCvssVersion
CVSS version used to populate cvss_score and severity.
| Returns | |
|---|---|
| Type | Description |
int |
|
setCvssVersion
CVSS version used to populate cvss_score and severity.
| Parameter | |
|---|---|
| Name | Description |
var |
int
|
| Returns | |
|---|---|
| Type | Description |
$this |
|
getCvssV2
The full description of the v2 CVSS for this vulnerability.
| Returns | |
|---|---|
| Type | Description |
CVSS|null |
|
hasCvssV2
clearCvssV2
setCvssV2
The full description of the v2 CVSS for this vulnerability.
| Parameter | |
|---|---|
| Name | Description |
var |
CVSS
|
| Returns | |
|---|---|
| Type | Description |
$this |
|