Class Vulnerability
- All Implemented Interfaces:
Serializable
,SdkPojo
,ToCopyableBuilder<Vulnerability.Builder,
Vulnerability>
A vulnerability associated with a finding.
- See Also:
-
Nested Class Summary
-
Method Summary
Modifier and TypeMethodDescriptionstatic Vulnerability.Builder
builder()
The vulnerabilities found in your Lambda function code.cvss()
CVSS scores from the advisory related to the vulnerability.final Double
The Exploit Prediction Scoring System (EPSS) score for a finding.final boolean
final boolean
equalsBySdkFields
(Object obj) Indicates whether some other object is "equal to" this one by SDK fields.Whether an exploit is available for a finding.final String
Whether an exploit is available for a finding.Specifies if all vulnerable packages in a finding have a value forFixedInVersion
andRemediation
.final String
Specifies if all vulnerable packages in a finding have a value forFixedInVersion
andRemediation
.final <T> Optional
<T> getValueForField
(String fieldName, Class<T> clazz) final boolean
For responses, this returns true if the service returned a value for the CodeVulnerabilities property.final boolean
hasCvss()
For responses, this returns true if the service returned a value for the Cvss property.final int
hashCode()
final boolean
For responses, this returns true if the service returned a value for the ReferenceUrls property.final boolean
For responses, this returns true if the service returned a value for the RelatedVulnerabilities property.final boolean
For responses, this returns true if the service returned a value for the VulnerablePackages property.final String
id()
The identifier of the vulnerability.final String
The date and time of the last exploit associated with a finding discovered in your environment.A list of URLs that provide additional information about the vulnerability.List of vulnerabilities that are related to this vulnerability.static Class
<? extends Vulnerability.Builder> Take this object and create a builder that contains all of the current property values of this object.final String
toString()
Returns a string representation of this object.final VulnerabilityVendor
vendor()
Information about the vendor that generates the vulnerability report.final List
<SoftwarePackage> List of software packages that have the vulnerability.Methods inherited from interface software.amazon.awssdk.utils.builder.ToCopyableBuilder
copy
-
Method Details
-
id
The identifier of the vulnerability.
- Returns:
- The identifier of the vulnerability.
-
hasVulnerablePackages
public final boolean hasVulnerablePackages()For responses, this returns true if the service returned a value for the VulnerablePackages property. This DOES NOT check that the value is non-empty (for which, you should check theisEmpty()
method on the property). This is useful because the SDK will never return a null collection or map, but you may need to differentiate between the service returning nothing (or null) and the service returning an empty collection or map. For requests, this returns true if a value for the property was specified in the request builder, and false if a value was not specified. -
vulnerablePackages
List of software packages that have the vulnerability.
Attempts to modify the collection returned by this method will result in an UnsupportedOperationException.
This method will never return null. If you would like to know whether the service returned this field (so that you can differentiate between null and empty), you can use the
hasVulnerablePackages()
method.- Returns:
- List of software packages that have the vulnerability.
-
hasCvss
public final boolean hasCvss()For responses, this returns true if the service returned a value for the Cvss property. This DOES NOT check that the value is non-empty (for which, you should check theisEmpty()
method on the property). This is useful because the SDK will never return a null collection or map, but you may need to differentiate between the service returning nothing (or null) and the service returning an empty collection or map. For requests, this returns true if a value for the property was specified in the request builder, and false if a value was not specified. -
cvss
CVSS scores from the advisory related to the vulnerability.
Attempts to modify the collection returned by this method will result in an UnsupportedOperationException.
This method will never return null. If you would like to know whether the service returned this field (so that you can differentiate between null and empty), you can use the
hasCvss()
method.- Returns:
- CVSS scores from the advisory related to the vulnerability.
-
hasRelatedVulnerabilities
public final boolean hasRelatedVulnerabilities()For responses, this returns true if the service returned a value for the RelatedVulnerabilities property. This DOES NOT check that the value is non-empty (for which, you should check theisEmpty()
method on the property). This is useful because the SDK will never return a null collection or map, but you may need to differentiate between the service returning nothing (or null) and the service returning an empty collection or map. For requests, this returns true if a value for the property was specified in the request builder, and false if a value was not specified. -
vendor
Information about the vendor that generates the vulnerability report.
- Returns:
- Information about the vendor that generates the vulnerability report.
-
hasReferenceUrls
public final boolean hasReferenceUrls()For responses, this returns true if the service returned a value for the ReferenceUrls property. This DOES NOT check that the value is non-empty (for which, you should check theisEmpty()
method on the property). This is useful because the SDK will never return a null collection or map, but you may need to differentiate between the service returning nothing (or null) and the service returning an empty collection or map. For requests, this returns true if a value for the property was specified in the request builder, and false if a value was not specified. -
referenceUrls
A list of URLs that provide additional information about the vulnerability.
Attempts to modify the collection returned by this method will result in an UnsupportedOperationException.
This method will never return null. If you would like to know whether the service returned this field (so that you can differentiate between null and empty), you can use the
hasReferenceUrls()
method.- Returns:
- A list of URLs that provide additional information about the vulnerability.
-
fixAvailable
Specifies if all vulnerable packages in a finding have a value for
FixedInVersion
andRemediation
. This field is evaluated for each vulnerabilityId
based on the number of vulnerable packages that have a value for bothFixedInVersion
andRemediation
. Valid values are as follows:-
YES
if all vulnerable packages have a value for bothFixedInVersion
andRemediation
-
NO
if no vulnerable packages have a value forFixedInVersion
andRemediation
-
PARTIAL
otherwise
If the service returns an enum value that is not available in the current SDK version,
fixAvailable
will returnVulnerabilityFixAvailable.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available fromfixAvailableAsString()
.- Returns:
- Specifies if all vulnerable packages in a finding have a value for
FixedInVersion
andRemediation
. This field is evaluated for each vulnerabilityId
based on the number of vulnerable packages that have a value for bothFixedInVersion
andRemediation
. Valid values are as follows:-
YES
if all vulnerable packages have a value for bothFixedInVersion
andRemediation
-
NO
if no vulnerable packages have a value forFixedInVersion
andRemediation
-
PARTIAL
otherwise
-
- See Also:
-
-
fixAvailableAsString
Specifies if all vulnerable packages in a finding have a value for
FixedInVersion
andRemediation
. This field is evaluated for each vulnerabilityId
based on the number of vulnerable packages that have a value for bothFixedInVersion
andRemediation
. Valid values are as follows:-
YES
if all vulnerable packages have a value for bothFixedInVersion
andRemediation
-
NO
if no vulnerable packages have a value forFixedInVersion
andRemediation
-
PARTIAL
otherwise
If the service returns an enum value that is not available in the current SDK version,
fixAvailable
will returnVulnerabilityFixAvailable.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available fromfixAvailableAsString()
.- Returns:
- Specifies if all vulnerable packages in a finding have a value for
FixedInVersion
andRemediation
. This field is evaluated for each vulnerabilityId
based on the number of vulnerable packages that have a value for bothFixedInVersion
andRemediation
. Valid values are as follows:-
YES
if all vulnerable packages have a value for bothFixedInVersion
andRemediation
-
NO
if no vulnerable packages have a value forFixedInVersion
andRemediation
-
PARTIAL
otherwise
-
- See Also:
-
-
epssScore
The Exploit Prediction Scoring System (EPSS) score for a finding.
- Returns:
- The Exploit Prediction Scoring System (EPSS) score for a finding.
-
exploitAvailable
Whether an exploit is available for a finding.
If the service returns an enum value that is not available in the current SDK version,
exploitAvailable
will returnVulnerabilityExploitAvailable.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available fromexploitAvailableAsString()
.- Returns:
- Whether an exploit is available for a finding.
- See Also:
-
exploitAvailableAsString
Whether an exploit is available for a finding.
If the service returns an enum value that is not available in the current SDK version,
exploitAvailable
will returnVulnerabilityExploitAvailable.UNKNOWN_TO_SDK_VERSION
. The raw value returned by the service is available fromexploitAvailableAsString()
.- Returns:
- Whether an exploit is available for a finding.
- See Also:
-
lastKnownExploitAt
The date and time of the last exploit associated with a finding discovered in your environment.
- Returns:
- The date and time of the last exploit associated with a finding discovered in your environment.
-
hasCodeVulnerabilities
public final boolean hasCodeVulnerabilities()For responses, this returns true if the service returned a value for the CodeVulnerabilities property. This DOES NOT check that the value is non-empty (for which, you should check theisEmpty()
method on the property). This is useful because the SDK will never return a null collection or map, but you may need to differentiate between the service returning nothing (or null) and the service returning an empty collection or map. For requests, this returns true if a value for the property was specified in the request builder, and false if a value was not specified. -
codeVulnerabilities
The vulnerabilities found in your Lambda function code. This field pertains to findings that Security Hub receives from Amazon Inspector.
Attempts to modify the collection returned by this method will result in an UnsupportedOperationException.
This method will never return null. If you would like to know whether the service returned this field (so that you can differentiate between null and empty), you can use the
hasCodeVulnerabilities()
method.- Returns:
- The vulnerabilities found in your Lambda function code. This field pertains to findings that Security Hub receives from Amazon Inspector.
-
toBuilder
Description copied from interface:ToCopyableBuilder
Take this object and create a builder that contains all of the current property values of this object.- Specified by:
toBuilder
in interfaceToCopyableBuilder<Vulnerability.Builder,
Vulnerability> - Returns:
- a builder for type T
-
builder
-
serializableBuilderClass
-
hashCode
public final int hashCode() -
equals
-
equalsBySdkFields
Description copied from interface:SdkPojo
Indicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in anSdkPojo
class, and is generated based on a service model.If an
SdkPojo
class does not have any inherited fields,equalsBySdkFields
andequals
are essentially the same.- Specified by:
equalsBySdkFields
in interfaceSdkPojo
- Parameters:
obj
- the object to be compared with- Returns:
- true if the other object equals to this object by sdk fields, false otherwise.
-
toString
Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value. -
getValueForField
-
sdkFields
-