Skip to main content

Refresh Vulnerability Stats

POST 
/api/v30.00/stats/vulnerabilities/refresh
x-prisma-cloud-target-env: {"permission":"monitorVuln","saas":true,"self-hosted":true}
x-public: true

Refreshes the current day's CVE counts and CVE list, as well as their descriptions.

This endpoint returns the same response as /api/v<VERSION>/stats/vulnerabilities, but with updated data for the current day.

cURL Request

Refer to the following example cURL command that refreshes the vulnerability statistics for current day:

$ curl -k \
  -u <USER> \
  -H 'Content-Type: application/json' \
  -X POST \
  'https://<CONSOLE>/api/v<VERSION>/stats/vulnerabilities/refresh'

A successful response returns a summary count of the CVEs and detailed descriptions for each CVE for the current day.

Request

Query Parameters

    offset integer

    Offsets the result to a specific report count. Offset starts from 0.

    limit integer

    Number of reports to retrieve in a page. For PCCE, the maximum limit is 250. For PCEE, the maximum limit is 50. The default value is 50.

    search string

    Retrieves the result for a search term.

    sort string

    Sorts the result using a key. Refer to the columns in the relevant Prisma Cloud Compute user interface to use them as sort keys.

    reverse boolean

    Sorts the result in reverse order.

    collections string[]

    Filters the result based on collection names that you have defined in Prisma Cloud Compute.

    provider string[]

    Scopes the query by cloud provider.

    accountIDs string[]

    Filters the result based on cloud account IDs.

    resourceIDs string[]

    Scopes the query by resource ID.

    region string[]

    Scopes the query by cloud region.

    fields string[]

    Retrieves the fields that you need in a report. Use the list of fields you want to retrieve. By default, the result shows all fields of data.

Responses

Schema
  • Array [
    • _id string

    ID of the vulnerability stats.

    codeRepos object

    ResourceVulnerabilityStats holds vulnerability stats of a single resource type

    count integer

    Count is the total number of vulnerabilities.

    cves object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    impacted object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    vulnerabilities object[]

    All resource vulnerabilities.

  • Array [
    • cve string

    CVE ID.

    description string

    Vulnerability description.

    exploits object[]

    Exploits represents the exploits data found for a CVE

  • Array [
    • kind vuln.ExploitKind

    Possible values: [poc,in-the-wild]

    ExploitKind represents the kind of the exploit

    link string

    Link is a link to information about the exploit.

    source vuln.ExploitType

    Possible values: [,exploit-db,exploit-windows,cisa-kev]

    ExploitType represents the source of an exploit

  • ]
    • highestCVSS float

    HighestCVSS is the highest CVSS score of the vulnerability.

    highestRiskFactors object

    RiskScoreFactors holds factors used to calculate risk score

    envVarSecrets boolean

    EnvVarSecrets indicates whether a container has access to secrets via environment variables.

    hostAccess boolean

    HostAccess indicates whether a container has access to the host network or namespace.

    internet boolean

    Internet indicates whether a container has internet access.

    network boolean

    Network indicates whether a container is listening to ports.

    noSecurityProfile boolean

    NoSecurityProfile indicates whether a container has security profile issue.

    privilegedContainer boolean

    PrivilegedContainer indicates whether a container runs using the --privileged flag.

    rootMount boolean

    RootMount indicates whether a container has access to the host file system using a root mount.

    rootPrivilege boolean

    RootPrivilege indicates whether a container runs as root.

    runtimeSocket boolean

    RuntimeSocket indicates whether a container has the runtime socket mounted.

    highestSeverity string

    HighestSeverity is the highest severity of the vulnerability.

    impactedPkgs string[]

    Packages impacted by the vulnerability.

    impactedResourceType vuln.ResourceType

    Possible values: [container,image,host,istio,vm,function,codeRepo,registryImage]

    ResourceType represents the resource type

    impactedResourcesCnt integer

    Number of resources impacted by this vulnerability.

    link string

    Link to CVE.

    riskFactors object

    RiskFactors maps the existence of vulnerability risk factors

    property name* string
    riskScore float

    Risk score.

    status string

    CVE status.

  • ]
    • containers object

    ResourceVulnerabilityStats holds vulnerability stats of a single resource type

    count integer

    Count is the total number of vulnerabilities.

    cves object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    impacted object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    vulnerabilities object[]

    All resource vulnerabilities.

  • Array [
    • cve string

    CVE ID.

    description string

    Vulnerability description.

    exploits object[]

    Exploits represents the exploits data found for a CVE

  • Array [
    • kind vuln.ExploitKind

    Possible values: [poc,in-the-wild]

    ExploitKind represents the kind of the exploit

    link string

    Link is a link to information about the exploit.

    source vuln.ExploitType

    Possible values: [,exploit-db,exploit-windows,cisa-kev]

    ExploitType represents the source of an exploit

  • ]
    • highestCVSS float

    HighestCVSS is the highest CVSS score of the vulnerability.

    highestRiskFactors object

    RiskScoreFactors holds factors used to calculate risk score

    envVarSecrets boolean

    EnvVarSecrets indicates whether a container has access to secrets via environment variables.

    hostAccess boolean

    HostAccess indicates whether a container has access to the host network or namespace.

    internet boolean

    Internet indicates whether a container has internet access.

    network boolean

    Network indicates whether a container is listening to ports.

    noSecurityProfile boolean

    NoSecurityProfile indicates whether a container has security profile issue.

    privilegedContainer boolean

    PrivilegedContainer indicates whether a container runs using the --privileged flag.

    rootMount boolean

    RootMount indicates whether a container has access to the host file system using a root mount.

    rootPrivilege boolean

    RootPrivilege indicates whether a container runs as root.

    runtimeSocket boolean

    RuntimeSocket indicates whether a container has the runtime socket mounted.

    highestSeverity string

    HighestSeverity is the highest severity of the vulnerability.

    impactedPkgs string[]

    Packages impacted by the vulnerability.

    impactedResourceType vuln.ResourceType

    Possible values: [container,image,host,istio,vm,function,codeRepo,registryImage]

    ResourceType represents the resource type

    impactedResourcesCnt integer

    Number of resources impacted by this vulnerability.

    link string

    Link to CVE.

    riskFactors object

    RiskFactors maps the existence of vulnerability risk factors

    property name* string
    riskScore float

    Risk score.

    status string

    CVE status.

  • ]
    • functions object

    ResourceVulnerabilityStats holds vulnerability stats of a single resource type

    count integer

    Count is the total number of vulnerabilities.

    cves object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    impacted object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    vulnerabilities object[]

    All resource vulnerabilities.

  • Array [
    • cve string

    CVE ID.

    description string

    Vulnerability description.

    exploits object[]

    Exploits represents the exploits data found for a CVE

  • Array [
    • kind vuln.ExploitKind

    Possible values: [poc,in-the-wild]

    ExploitKind represents the kind of the exploit

    link string

    Link is a link to information about the exploit.

    source vuln.ExploitType

    Possible values: [,exploit-db,exploit-windows,cisa-kev]

    ExploitType represents the source of an exploit

  • ]
    • highestCVSS float

    HighestCVSS is the highest CVSS score of the vulnerability.

    highestRiskFactors object

    RiskScoreFactors holds factors used to calculate risk score

    envVarSecrets boolean

    EnvVarSecrets indicates whether a container has access to secrets via environment variables.

    hostAccess boolean

    HostAccess indicates whether a container has access to the host network or namespace.

    internet boolean

    Internet indicates whether a container has internet access.

    network boolean

    Network indicates whether a container is listening to ports.

    noSecurityProfile boolean

    NoSecurityProfile indicates whether a container has security profile issue.

    privilegedContainer boolean

    PrivilegedContainer indicates whether a container runs using the --privileged flag.

    rootMount boolean

    RootMount indicates whether a container has access to the host file system using a root mount.

    rootPrivilege boolean

    RootPrivilege indicates whether a container runs as root.

    runtimeSocket boolean

    RuntimeSocket indicates whether a container has the runtime socket mounted.

    highestSeverity string

    HighestSeverity is the highest severity of the vulnerability.

    impactedPkgs string[]

    Packages impacted by the vulnerability.

    impactedResourceType vuln.ResourceType

    Possible values: [container,image,host,istio,vm,function,codeRepo,registryImage]

    ResourceType represents the resource type

    impactedResourcesCnt integer

    Number of resources impacted by this vulnerability.

    link string

    Link to CVE.

    riskFactors object

    RiskFactors maps the existence of vulnerability risk factors

    property name* string
    riskScore float

    Risk score.

    status string

    CVE status.

  • ]
    • hosts object

    ResourceVulnerabilityStats holds vulnerability stats of a single resource type

    count integer

    Count is the total number of vulnerabilities.

    cves object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    impacted object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    vulnerabilities object[]

    All resource vulnerabilities.

  • Array [
    • cve string

    CVE ID.

    description string

    Vulnerability description.

    exploits object[]

    Exploits represents the exploits data found for a CVE

  • Array [
    • kind vuln.ExploitKind

    Possible values: [poc,in-the-wild]

    ExploitKind represents the kind of the exploit

    link string

    Link is a link to information about the exploit.

    source vuln.ExploitType

    Possible values: [,exploit-db,exploit-windows,cisa-kev]

    ExploitType represents the source of an exploit

  • ]
    • highestCVSS float

    HighestCVSS is the highest CVSS score of the vulnerability.

    highestRiskFactors object

    RiskScoreFactors holds factors used to calculate risk score

    envVarSecrets boolean

    EnvVarSecrets indicates whether a container has access to secrets via environment variables.

    hostAccess boolean

    HostAccess indicates whether a container has access to the host network or namespace.

    internet boolean

    Internet indicates whether a container has internet access.

    network boolean

    Network indicates whether a container is listening to ports.

    noSecurityProfile boolean

    NoSecurityProfile indicates whether a container has security profile issue.

    privilegedContainer boolean

    PrivilegedContainer indicates whether a container runs using the --privileged flag.

    rootMount boolean

    RootMount indicates whether a container has access to the host file system using a root mount.

    rootPrivilege boolean

    RootPrivilege indicates whether a container runs as root.

    runtimeSocket boolean

    RuntimeSocket indicates whether a container has the runtime socket mounted.

    highestSeverity string

    HighestSeverity is the highest severity of the vulnerability.

    impactedPkgs string[]

    Packages impacted by the vulnerability.

    impactedResourceType vuln.ResourceType

    Possible values: [container,image,host,istio,vm,function,codeRepo,registryImage]

    ResourceType represents the resource type

    impactedResourcesCnt integer

    Number of resources impacted by this vulnerability.

    link string

    Link to CVE.

    riskFactors object

    RiskFactors maps the existence of vulnerability risk factors

    property name* string
    riskScore float

    Risk score.

    status string

    CVE status.

  • ]
    • images object

    ResourceVulnerabilityStats holds vulnerability stats of a single resource type

    count integer

    Count is the total number of vulnerabilities.

    cves object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    impacted object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    vulnerabilities object[]

    All resource vulnerabilities.

  • Array [
    • cve string

    CVE ID.

    description string

    Vulnerability description.

    exploits object[]

    Exploits represents the exploits data found for a CVE

  • Array [
    • kind vuln.ExploitKind

    Possible values: [poc,in-the-wild]

    ExploitKind represents the kind of the exploit

    link string

    Link is a link to information about the exploit.

    source vuln.ExploitType

    Possible values: [,exploit-db,exploit-windows,cisa-kev]

    ExploitType represents the source of an exploit

  • ]
    • highestCVSS float

    HighestCVSS is the highest CVSS score of the vulnerability.

    highestRiskFactors object

    RiskScoreFactors holds factors used to calculate risk score

    envVarSecrets boolean

    EnvVarSecrets indicates whether a container has access to secrets via environment variables.

    hostAccess boolean

    HostAccess indicates whether a container has access to the host network or namespace.

    internet boolean

    Internet indicates whether a container has internet access.

    network boolean

    Network indicates whether a container is listening to ports.

    noSecurityProfile boolean

    NoSecurityProfile indicates whether a container has security profile issue.

    privilegedContainer boolean

    PrivilegedContainer indicates whether a container runs using the --privileged flag.

    rootMount boolean

    RootMount indicates whether a container has access to the host file system using a root mount.

    rootPrivilege boolean

    RootPrivilege indicates whether a container runs as root.

    runtimeSocket boolean

    RuntimeSocket indicates whether a container has the runtime socket mounted.

    highestSeverity string

    HighestSeverity is the highest severity of the vulnerability.

    impactedPkgs string[]

    Packages impacted by the vulnerability.

    impactedResourceType vuln.ResourceType

    Possible values: [container,image,host,istio,vm,function,codeRepo,registryImage]

    ResourceType represents the resource type

    impactedResourcesCnt integer

    Number of resources impacted by this vulnerability.

    link string

    Link to CVE.

    riskFactors object

    RiskFactors maps the existence of vulnerability risk factors

    property name* string
    riskScore float

    Risk score.

    status string

    CVE status.

  • ]
    • modified date-time

    Date/time when the entity was modified.

    registryImages object

    ResourceVulnerabilityStats holds vulnerability stats of a single resource type

    count integer

    Count is the total number of vulnerabilities.

    cves object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    impacted object

    Distribution counts the number of vulnerabilities per type

    critical integer

    .

    high integer

    .

    low integer

    .

    medium integer

    .

    total integer

    .

    vulnerabilities object[]

    All resource vulnerabilities.

  • Array [
    • cve string

    CVE ID.

    description string

    Vulnerability description.

    exploits object[]

    Exploits represents the exploits data found for a CVE

  • Array [
    • kind vuln.ExploitKind

    Possible values: [poc,in-the-wild]

    ExploitKind represents the kind of the exploit

    link string

    Link is a link to information about the exploit.

    source vuln.ExploitType

    Possible values: [,exploit-db,exploit-windows,cisa-kev]

    ExploitType represents the source of an exploit

  • ]
    • highestCVSS float

    HighestCVSS is the highest CVSS score of the vulnerability.

    highestRiskFactors object

    RiskScoreFactors holds factors used to calculate risk score

    envVarSecrets boolean

    EnvVarSecrets indicates whether a container has access to secrets via environment variables.

    hostAccess boolean

    HostAccess indicates whether a container has access to the host network or namespace.

    internet boolean

    Internet indicates whether a container has internet access.

    network boolean

    Network indicates whether a container is listening to ports.

    noSecurityProfile boolean

    NoSecurityProfile indicates whether a container has security profile issue.

    privilegedContainer boolean

    PrivilegedContainer indicates whether a container runs using the --privileged flag.

    rootMount boolean

    RootMount indicates whether a container has access to the host file system using a root mount.

    rootPrivilege boolean

    RootPrivilege indicates whether a container runs as root.

    runtimeSocket boolean

    RuntimeSocket indicates whether a container has the runtime socket mounted.

    highestSeverity string

    HighestSeverity is the highest severity of the vulnerability.

    impactedPkgs string[]

    Packages impacted by the vulnerability.

    impactedResourceType vuln.ResourceType

    Possible values: [container,image,host,istio,vm,function,codeRepo,registryImage]

    ResourceType represents the resource type

    impactedResourcesCnt integer

    Number of resources impacted by this vulnerability.

    link string

    Link to CVE.

    riskFactors object

    RiskFactors maps the existence of vulnerability risk factors

    property name* string
    riskScore float

    Risk score.

    status string

    CVE status.

  • ]
  • ]
Loading...