Vulnerability
object
Known software exploitation.
Fields
id
 ID!
non-null
Vulnerability ID.
cveIdentifier
 String!
non-null
Vulnerability CVE identifier. e.g. CVE-2024-12345.
summary
 String!
non-null
A description of the vulnerability.
references
 [VulnerabilityReference!]
References for further information on the vulnerability, if available.
riskScore
 Int!
non-null
Vulnerability's Risk Score. This score gives an overall view of how severe the vulnerability is by considering factors like how well-known the CVE is, the risk of it being compromised, and its life cycle. The score ranges from 0-100, where 100 is the highest risk.
severity
 VulnerabilitySeverity!
non-null
Vulnerability severity (e.g. CRITICAL, HIGH, MEDIUM, LOW).
cvss
 Float!
non-null
Vulnerability CVSS score (0.0-10.0). If CVSS scores for multiple versions are available, it will be the latest.
publishedAt
 DateTime!
non-null
The date-time this vulnerability was first published.
updatedAt
 DateTime!
non-null
The date-time this vulnerability was last updated.
cvss3Details
 VulnerabilityCvss3Details
CVSS v3 details of this vulnerability, if applicable.
isCisaKev
 Boolean
True if this vulnerability has CISA KEV details.
cisaDetails
 VulnerabilityCisaDetails
CISA KEV details.
hasRansomwareCampaignUse
 Boolean
True if this vulnerability is known to have been leveraged as part of a ransomware campaign.
hasExploit
 Boolean
True if this vulnerability is known to be exploited in the wild.
cwes
 [Cwe!]
Common Weakness Enumeration (CWE) codes associated with this vulnerability.