https://api.bitsighttech.com/ratings/v2/threats/
See threats (such as vulnerabilities) detected in your portfolio.
Parameters
See query parameters for details on the following parameters:
fields
-
format
(Default: ↻json
) -
limit
(Default: ↻10
) -
offset
(Default: ↻0
) q
-
sort
(Default: ↻exposure_trend
)
Parameter | Values | |
---|---|---|
category_slug [Query] Filter by category of threats. |
[String]
|
|
company_guid [Query] Filter by company. |
[String] Company unique identifier [entity_guid ]. See GET: Portfolio Details. |
|
CVSS Score | [Decimal] CVSS score. | |
severity_gte [Query] Filter by a vulnerability’s severity (>e;). |
||
severity_lte [Query] Filter by a vulnerability’s severity (<e;). |
||
expand [Query] Include the number of questionnaires sent to each threat. |
[String] questionnaires_sent
|
|
exposure_trend [Query] Filter by exposure trend. |
[String]
|
|
folder [Query] Filter by folder. |
[String] Folder unique identifier [folder_guid ]. See GET: Folder Details. |
|
impacts_selection [Query] Filter by impact. |
[Boolean]
|
|
Seen Date | [String] YYYY-MM-DD
|
|
first_seen_date_gte [Query] Filter threats first seen on and after a specific date. |
||
first_seen_date_lte [Query] Filter threats first seen on and before a specific date. |
||
last_seen_date_gte [Query] Filter threats last seen on and after a specific date. |
||
last_seen_date_lte [Query] Filter threats last seen on and before a specific date. |
||
scope [Query] Limit threats returned. |
[String]
|
|
severity_level [Query] Filter by vulnerability severity. |
[String] Bitsight severity slug name. | |
threat_guid [Query] Filter by threat. |
[String] Threat unique identifier [threat_guid ]. See response. |
|
tier [Query] Filter by tier. |
[String] Tier unique identifier [tier_guid ]. See GET: Tiers. |
Example Request
curl https://api.bitsighttech.com/ratings/v2/threats/ -u api_token:
Example Response
{ "links": { "previous": null, "next": "https://api.bitsighttech.com/ratings/v2/threats/?limit=30&offset=30" }, "count": 8745, "results": [ { "guid": "db72416d-454a-4551-a03e-74c749048d46", "name": "CVE-2024-20353", "first_seen_date": "2023-09-14", "last_seen_date": "2024-05-17", "severity": { "level": "Material", "details": "CVSS 8.6" }, "category": { "name": "vulnerability", "slug": "vulnerability" }, "support_started_date": "2024-04-30", "exposed_count": 2325, "mitigated_count": 0, "exposure_trend": 2325, "questionnaires_sent": null, "epss": { "score": 0.2, "percentile": 56.0 }, "evidence_certainty": "POSSIBLE" }, […] ] }
Response Attributes
Field | Description | |||
---|---|---|---|---|
links Object |
Navigation for multiple pages of results. See pagination. | |||
previous String |
The URL for navigating to the previous page of results. | |||
next String |
The URL for navigating to the next page of results. | |||
count Integer |
The number of threats. | |||
results Array |
Threats and their details. | |||
Object | A threat. | |||
guid String [ |
The threat unique identifier. | |||
name String |
The threat name, such as the CVE ID or vulnerability name. | |||
first_seen_date String [ |
The date when this threat was first seen. | |||
last_seen_date String [ |
The date when threat data was last available, which indicates either exposure or mitigation. | |||
severity Object |
The vulnerability severity. | |||
level String |
The Bitsight severity level. | |||
details String |
The CVSS score. | |||
category Object |
The threat category. | |||
name String |
The category name. | |||
slug String |
The category slug name. | |||
support_started_date String [ |
The date when this threat was first supported in the Bitsight platform. | |||
exposed_count Integer |
The number of companies that have been observed to have evidence of exposure (exposure). | |||
mitigated_count Integer |
The number of companies that have evidence of active mitigation (mitigation). | |||
exposure_trend Integer |
The number of exposure changes in the last 14 days. | |||
questionnaires_sent Integer |
If the expand parameter is set (?expand=questionnaires_sent ), this count of questionnaires that have been sent is included. |
|||
epss Object |
The Exploit Prediction Scoring System (EPSS), which estimates the likelihood that a software will be exploited. The higher the percentage the more likely it will be exploited. | |||
score Decimal |
The EPSS score. | |||
percentile Decimal |
The percentile of the EPSS score compared to all other EPSS scores. | |||
evidence_certainty String |
The evidence certainty, which measures the certainty of the detection status. |
Response Codes
Code | Description |
---|---|
200 – Success |
Everything worked as expected. |
422 – Validation Error |
There was a validation error. |
- October 17, 2024: Published.
Feedback
0 comments
Please sign in to leave a comment.