Vulnerability

ocsf_types::ocsf_generated

Struct Vulnerability 

Source 
#[non_exhaustive]
pub struct Vulnerability {
Show 31 fields
    pub advisory: Option<Box<Advisory>>,
    pub affected_code: Option<Vec<AffectedCode>>,
    pub affected_packages: Option<Vec<AffectedPackage>>,
    pub category: Option<String>,
    pub cve: Option<Box<Cve>>,
    pub cwe: Option<Box<Cwe>>,
    pub dependency_chain: Option<String>,
    pub desc: Option<String>,
    pub exploit_last_seen_time: Option<i64>,
    pub exploit_last_seen_time_dt: Option<String>,
    pub exploit_ref_url: Option<String>,
    pub exploit_requirement: Option<String>,
    pub exploit_type: Option<String>,
    pub first_seen_time: Option<i64>,
    pub first_seen_time_dt: Option<String>,
    pub fix_available: Option<bool>,
    pub fix_coverage: Option<String>,
    pub fix_coverage_id: Option<i64>,
    pub is_exploit_available: Option<bool>,
    pub is_fix_available: Option<bool>,
    pub kb_article_list: Option<Vec<KbArticle>>,
    pub kb_articles: Option<Vec<String>>,
    pub last_seen_time: Option<i64>,
    pub last_seen_time_dt: Option<String>,
    pub packages: Option<Vec<Package>>,
    pub references: Option<Vec<String>>,
    pub related_vulnerabilities: Option<Vec<String>>,
    pub remediation: Option<Box<Remediation>>,
    pub severity: Option<String>,
    pub title: Option<String>,
    pub vendor_name: Option<String>,

}
Expand description

Vulnerability Details

The vulnerability is an unintended characteristic of a computing component or system configuration that multiplies the risk of an adverse event or a loss occurring either due to accidental exposure, deliberate attack, or conflict with new system components.

[] Category: | Name: vulnerability

Constraints:

  • just_one: [advisory,cve,cwe]

Fields (Non-exhaustive)§

This struct is marked as non-exhaustive
Non-exhaustive structs could have additional fields added in future. Therefore, non-exhaustive structs cannot be constructed in external crates using the traditional Struct { .. } syntax; cannot be matched against without a wildcard ..; and struct update syntax will not work.
§advisory: Option<Box<Advisory>>

Security Advisory

Detail about the security advisory, that is used to publicly disclose cybersecurity vulnerabilities by a vendor.

optional

§affected_code: Option<Vec<AffectedCode>>

Affected Code

List of Affected Code objects that describe details about code blocks identified as vulnerable.

optional

§affected_packages: Option<Vec<AffectedPackage>>

Affected Software Packages

List of software packages identified as affected by a vulnerability/vulnerabilities.

optional

§category: Option<String>

Category

The category of a vulnerability or weakness, as reported by the source tool, such as Container Security or Open Source Security.

optional

§cve: Option<Box<Cve>>

CVE

Describes the Common Vulnerabilities and Exposures (CVE) details related to the vulnerability.

recommended

§cwe: Option<Box<Cwe>>

CWE

Describes the Common Weakness Enumeration (CWE) details related to the vulnerability.

recommended

§dependency_chain: Option<String>

Dependency Chain

Information about the chain of dependencies related to the issue as reported by an Application Security or Vulnerability Management tool. E.g., serverless-offline -> @serverless/utils -> memoizee -> es5-ext.

optional

§desc: Option<String>

Description

The description of the vulnerability.

optional

§exploit_last_seen_time: Option<i64>

Exploit Last Seen Time

The time when the exploit was most recently observed.

optional

§exploit_last_seen_time_dt: Option<String>

Exploit Last Seen Time

The time when the exploit was most recently observed.

optional

§exploit_ref_url: Option<String>

Exploit URL

The URL of the exploit code or Proof-of-Concept (PoC).

optional

§exploit_requirement: Option<String>

Exploit Requirement

The requirement description related to any constraints around exploit execution.

optional

§exploit_type: Option<String>

Exploit Type

The categorization or type of Exploit. E.g., Network or Physical.

optional

§first_seen_time: Option<i64>

First Seen

The time when the vulnerability was first observed.

optional

§first_seen_time_dt: Option<String>

First Seen

The time when the vulnerability was first observed.

optional

§fix_available: Option<bool>

Fix Availability

Indicates if a fix is available for the reported vulnerability.

optional

§fix_coverage: Option<String>

Fix Coverage

The fix coverage, normalized to the caption of the fix_coverage_id value.

optional

§fix_coverage_id: Option<i64>

Fix Coverage ID

The normalized identifier for fix coverage, applicable to this vulnerability. Typically useful, when there are multiple affected packages but only a subset have available fixes.

optional

§is_exploit_available: Option<bool>

Exploit Availability

Indicates if an exploit or a PoC (proof-of-concept) is available for the reported vulnerability.

optional

§is_fix_available: Option<bool>

Fix Availability

Indicates if a fix is available for the reported vulnerability.

optional

§kb_article_list: Option<Vec<KbArticle>>

Knowledgebase Articles

A list of KB articles or patches related to an endpoint. A KB Article contains metadata that describes the patch or an update.

optional

§kb_articles: Option<Vec<String>>

Knowledgebase Articles

The KB article/s related to the entity. A KB Article contains metadata that describes the patch or an update.

optional

§last_seen_time: Option<i64>

Last Seen

The time when the vulnerability was most recently observed.

optional

§last_seen_time_dt: Option<String>

Last Seen

The time when the vulnerability was most recently observed.

optional

§packages: Option<Vec<Package>>

Software Packages

List of vulnerable packages as identified by the security product

optional

§references: Option<Vec<String>>

References

A list of reference URLs with additional information about the vulnerability.

recommended

§related_vulnerabilities: Option<Vec<String>>

Related Vulnerability IDs

List of vulnerability IDs (e.g. CVE ID) that are related to this vulnerability.

optional

§remediation: Option<Box<Remediation>>

Remediation Guidance

The remediation recommendations on how to mitigate the identified vulnerability.

optional

§severity: Option<String>

Severity

The vendor assigned severity of the vulnerability.

optional

§title: Option<String>

Title

A title or a brief phrase summarizing the discovered vulnerability.

optional

§vendor_name: Option<String>

Vendor Name

The name of the vendor that identified the vulnerability.

optional

Trait Implementations§

Source§

impl Clone for Vulnerability

Source§

fn clone(&self) -> Vulnerability

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for Vulnerability

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl Default for Vulnerability

Source§

fn default() -> Vulnerability

Returns the “default value” for a type. Read more
Source§

impl<'de> Deserialize<'de> for Vulnerability
where Vulnerability: Default,

Source§

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
Source§

impl PartialEq for Vulnerability

Source§

fn eq(&self, other: &Vulnerability) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl Serialize for Vulnerability

Source§

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more
Source§

impl StructuralPartialEq for Vulnerability

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,