- 1.39.0 (latest)
- 1.38.0
- 1.37.0
- 1.36.0
- 1.35.1
- 1.33.1
- 1.32.1
- 1.31.0
- 1.30.1
- 1.29.0
- 1.28.0
- 1.27.0
- 1.26.1
- 1.25.0
- 1.24.1
- 1.23.2
- 1.22.0
- 1.21.0
- 1.20.0
- 1.19.1
- 1.18.2
- 1.17.0
- 1.16.2
- 1.15.0
- 1.14.0
- 1.13.0
- 1.12.0
- 1.11.1
- 1.10.0
- 1.9.0
- 1.8.0
- 1.7.0
- 1.6.0
- 1.5.2
- 1.4.0
- 1.3.1
- 1.2.0
- 1.1.0
- 1.0.0
- 0.7.3
- 0.6.0
- 0.5.0
- 0.4.0
- 0.3.0
Cve(mapping=None, *, ignore_unknown_fields=False, **kwargs)CVE stands for Common Vulnerabilities and Exposures. Information
from the CVE
record <https://www.cve.org/ResourcesSupport/Glossary>__ that
describes this vulnerability.
Attributes |
|
|---|---|
| Name | Description |
id |
str
The unique identifier for the vulnerability. e.g. CVE-2021-34527 |
references |
MutableSequence[google.cloud.securitycenter_v1.types.Reference]
Additional information about the CVE. e.g. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-34527 |
cvssv3 |
google.cloud.securitycenter_v1.types.Cvssv3
Describe Common Vulnerability Scoring System specified at https://www.first.org/cvss/v3.1/specification-document |
upstream_fix_available |
bool
Whether upstream fix is available for the CVE. |
impact |
google.cloud.securitycenter_v1.types.Cve.RiskRating
The potential impact of the vulnerability if it was to be exploited. |
exploitation_activity |
google.cloud.securitycenter_v1.types.Cve.ExploitationActivity
The exploitation activity of the vulnerability in the wild. |
observed_in_the_wild |
bool
Whether or not the vulnerability has been observed in the wild. |
zero_day |
bool
Whether or not the vulnerability was zero day when the finding was published. |
Classes
ExploitationActivity
ExploitationActivity(value)The possible values of exploitation activity of the vulnerability in the wild.
Values: EXPLOITATION_ACTIVITY_UNSPECIFIED (0): Invalid or empty value. WIDE (1): Exploitation has been reported or confirmed to widely occur. CONFIRMED (2): Limited reported or confirmed exploitation activities. AVAILABLE (3): Exploit is publicly available. ANTICIPATED (4): No known exploitation activity, but has a high potential for exploitation. NO_KNOWN (5): No known exploitation activity.
RiskRating
RiskRating(value)The possible values of impact of the vulnerability if it was to be exploited.
Values: RISK_RATING_UNSPECIFIED (0): Invalid or empty value. LOW (1): Exploitation would have little to no security impact. MEDIUM (2): Exploitation would enable attackers to perform activities, or could allow attackers to have a direct impact, but would require additional steps. HIGH (3): Exploitation would enable attackers to have a notable direct impact without needing to overcome any major mitigating factors. CRITICAL (4): Exploitation would fundamentally undermine the security of affected systems, enable actors to perform significant attacks with minimal effort, with little to no mitigating factors to overcome.