Configured Advisory Groups API

The information required to view the each Advisory Smart Group results is organized into the following tabs:

Configured Advisory Groups API Information

Requirement Types

Details

API

https://csi7.secunia.com/csi/api/?uid=<xyz>&action=<xyz>&which=<xyz>&smartGroupTextType=<xyz>&smartGroupId=<xyz>&_dc=1563434762909&sort=vuln_title&dir=ASC&sorters=%5B%7B%22field%22%3A%22vuln_title%22%2C%22direction%22%3A%22ASC%22%7D%5D&start=0&limit=20

Note:The value for <XYZ> in the above API is defined in the Parameters section.

Methods

GET

Parameters

•

uid = UID Value taken from successful login. See How to Obtain the Token .

•

action = smart_groups

•

which = getSmartGroupContents

•

smartGroupTextType = advisory

•

smartGroupId = "id":"n" value from the JSON response of Advisory Smart Group API.

•

sort =

Note:These parameters have to be entered in the <XYZ> of the above API respectively

Response

{"success":true,"error_code":0,"data":{"rows":[{"vuln_id":"87695","vuln_title":"Cisco Multiple Products Update Service Privilege Escalation Vulnerability","vuln_criticality":"4","vuln_threat_score":"2","vuln_zero_day":"0","vuln_create_date":"2019-02-27 00:00:00","vulnerabilities":"1","vuln_solution_status":"4","vuln_cvss_score_all":"v3:7.8","vuln_cvss_score":"0","vuln_cvss3_score":"7.8","vuln_where_type":"3","vuln_impact_type":",3,","installations":"1","products":"1","hosts":"1"},{"vuln_id":"89704","vuln_title":"cURL Insecure Permissions Privilege Escalation Vulnerability","vuln_criticality":"4","vuln_threat_score":"","vuln_zero_day":"0","vuln_create_date":"2019-06-24 00:00:00","vulnerabilities":"1","vuln_solution_status":"2","vuln_cvss_score_all":"v3:7.8","vuln_cvss_score":"0","vuln_cvss3_score":"7.8","vuln_where_type":"3","vuln_impact_type":",3,","installations":"1","products":"1","hosts":"1"},{"vuln_id":"76592","vuln_title":"Cygwin "sec_auth.cc" Privilege Escalation Vulnerability","vuln_criticality":"4","vuln_threat_score":"","vuln_zero_day":"0","vuln_create_date":"2017-04-28 00:00:00","vulnerabilities":"1","vuln_solution_status":"2","vuln_cvss_score_all":"v2:6.8","vuln_cvss_score":"6.8","vuln_cvss3_score":"0","vuln_where_type":"3","vuln_impact_type":",3,","installations":"2","products":"1","hosts":"1"},

Received Information

The following information will be received in the API response:

•

"vuln_id"—SAID

•

"vuln_title"—Title of SAID

•

"vuln_criticality"—SAID criticality

•

"vuln_threat_score"—Threat Score

•

"vuln_zero_day"—If its zero day advisory its will be 1

•

"vuln_create_date"—Vulnerability created date

•

"vulnerabilities"—Number of CVE references

•

"vuln_solution_status"—Solution status of the vulnerability

•

"vuln_cvss_score_all"—CVSS Base Score

•

"vuln_cvss_score"—CVSS2 Base score

•

"vuln_cvss3_score"—CVSS3 Base score

•

"vuln_where_type"—types of attack vector:

•

From remote:1

•

From local network:2

•

Local system:3

•

"vuln_impact_type"—Impact of vulnerability:

•

System access:1

•

DoS:2

•

Privilege escalation:3

•

Exposure of sensitive information:4

•

Exposure of system information:5

•

Brute force:6

•

Manipulation of data:7

•

Spoofing:8

•

Cross Site Scripting:9

•

Security Bypass:10

•

Hijacking:11

•

Unknown:12

•

"installations"—Number of installations affected by this vulnerability

•

"products"—Number of products affected by this vulnerability

•

"hosts"—Number of hosts affected by this vulnerability

Note:Threat Score is available only for users with Threat Intelligence module.