Class: Nexpose::VulnFinding

Inherits:

Object

• Object
• Nexpose::VulnFinding

Defined in:

lib/nexpose/vuln.rb

Overview

Vulnerability finding information pulled from AJAX requests. Data uses a numeric, console-specific vuln ID, which may need to be cross-referenced to the String ID to be used elsewhere.

Direct Known Subclasses

VulnSynopsis

Instance Attribute Summary

• #console_id ⇒ Object readonly

  Unique, console-specific identifier of the vulnerability.

• #cvss_score ⇒ Object readonly

  Returns the value of attribute cvss_score.

• #cvss_vector ⇒ Object readonly

  Returns the value of attribute cvss_vector.

• #exploit ⇒ Object readonly

  Main published exploit module against this vulnerability, if any.

• #id ⇒ Object readonly

  Unique identifier of the vulnerability.

• #instances ⇒ Object readonly

  Number of instances of this vulnerabilty finding on an asset.

• #malware ⇒ Object readonly

  Whether known malware kits exploit this vulnerability.

• #published ⇒ Object readonly

  Date this vulnerability was published.

• #risk ⇒ Object readonly

  Returns the value of attribute risk.

• #severity ⇒ Object readonly

  Returns the value of attribute severity.

• #title ⇒ Object readonly

  Vulnerability title.

• #verified ⇒ Object readonly

  Date that a vuln was verified, if validation has been carried out.

Instance Method Summary

• #initialize(json) ⇒ VulnFinding constructor

  A new instance of VulnFinding.

Constructor Details

#initialize(json) ⇒ VulnFinding

Returns a new instance of VulnFinding.

# File 'lib/nexpose/vuln.rb', line 255

def initialize(json)
  @id          = json['nexVulnID']
  @console_id  = json['vulnID']
  @title       = json['title']
  @cvss_vector = json['cvssBase']
  @cvss_score  = json['cvssScore']
  @risk        = json['riskScore']
  @published   = Time.at(json['publishedDate'] / 1000)
  @severity    = json['severity']
  @instances   = json['vulnInstanceCount']
  @exploit     = json['mainExploit']
  @malware     = json['malwareCount']
  @verified    = DateTime.iso8601(json['verifiedDate'].slice(0, 15)).to_time if json['verifiedDate']
end

Instance Attribute Details

#console_id ⇒ Object (readonly)

Unique, console-specific identifier of the vulnerability.

# File 'lib/nexpose/vuln.rb', line 237

def console_id
  @console_id
end

#cvss_score ⇒ Object (readonly)

Returns the value of attribute cvss_score.

# File 'lib/nexpose/vuln.rb', line 240

def cvss_score
  @cvss_score
end

#cvss_vector ⇒ Object (readonly)

Returns the value of attribute cvss_vector.

# File 'lib/nexpose/vuln.rb', line 241

def cvss_vector
  @cvss_vector
end

#exploit ⇒ Object (readonly)

Main published exploit module against this vulnerability, if any.

# File 'lib/nexpose/vuln.rb', line 249

def exploit
  @exploit
end

#id ⇒ Object (readonly)

Unique identifier of the vulnerability.

# File 'lib/nexpose/vuln.rb', line 235

def id
  @id
end

#instances ⇒ Object (readonly)

Number of instances of this vulnerabilty finding on an asset.

# File 'lib/nexpose/vuln.rb', line 247

def instances
  @instances
end

#malware ⇒ Object (readonly)

Whether known malware kits exploit this vulnerability.

# File 'lib/nexpose/vuln.rb', line 251

def malware
  @malware
end

#published ⇒ Object (readonly)

Date this vulnerability was published.

# File 'lib/nexpose/vuln.rb', line 244

def published
  @published
end

#risk ⇒ Object (readonly)

Returns the value of attribute risk.

# File 'lib/nexpose/vuln.rb', line 242

def risk
  @risk
end

#severity ⇒ Object (readonly)

Returns the value of attribute severity.

# File 'lib/nexpose/vuln.rb', line 245

def severity
  @severity
end

#title ⇒ Object (readonly)

Vulnerability title.

# File 'lib/nexpose/vuln.rb', line 239

def title
  @title
end

#verified ⇒ Object (readonly)

Date that a vuln was verified, if validation has been carried out.

# File 'lib/nexpose/vuln.rb', line 253

def verified
  @verified
end