Get Vulnerabilities for an Asset

GET

{org_uid}

assets

{asset_uid}

vulns

Returns list of exploitable vulnerabilities on a given organization and asset uid

curl --request GET \
  --url https://client.synack.com/api/streaming/v1/{org_uid}/assets/{asset_uid}/vulns \
  --header 'Authorization: Bearer <token>'

{
  "data": {
    "attributes": "<unknown>",
    "id": "<string>",
    "links": {
      "next": "<string>",
      "prev": "<string>"
    },
    "meta": "<unknown>",
    "relationships": {},
    "type": "asset_list"
  },
  "errors": [
    {
      "detail": "<string>",
      "id": "<string>",
      "source": "<string>",
      "status": 123,
      "title": "<string>"
    }
  ],
  "included": [
    "<unknown>"
  ],
  "links": {
    "next": "<string>",
    "prev": "<string>"
  },
  "meta": "<unknown>"
}

Authorizations

Authorization

string

header

required

Bearer authentication header of the form Bearer <token>, where <token> is your auth token.

Path Parameters

org_uid

string

required

Organization UID

asset_uid

string

required

Asset UID

Query Parameters

statuses[]

string[]

Vulnerability status

vuln_cvss[]

string[]

Vulnerability CVSS range [0.0-0.0, 0.1-3.9, 4.0-6.9, 7.0-8.9, 9.0-10.0]

patch_verification[]

string[]

Patch verification status [requested failed cancelled verified blocked]

order_by

enum<string>

default:severity

Order by [title, severity, created_at, status]

Available options:

title,

severity,

created_at,

status

order_direction

enum<string>

default:asc

Order direction [asc desc]

Available options:

asc,

desc

per_page

integer

Maximum number of results to be returned

page

integer

If provided, show the provided page

Response

data

object

Show child attributes

data.attributes

any

data.id

string

data.links

object

Show child attributes

data.links.next

string

data.links.prev

string

data.meta

any

data.relationships

object

Show child attributes

data.relationships.{key}

object

Show child attributes

data.relationships.{key}.data

any

data.relationships.{key}.links

object

Show child attributes

data.relationships.{key}.links.next

string

data.relationships.{key}.links.prev

string

data.type

enum<string>

Available options:

asset_list,

assets_counts,

asset_details,

asset_whois,

asset_ports,

asset_providers,

asset_seed_groups,

health_check,

org_asset_ports,

org_asset_suspected_vulns,

org_asset_vulns,

org_asset_listings_tests_latest,

top_vulnerable_ports,

top_unique_ports,

most_recently_added_assets,

top_cisa_cves,

top_vulnerable_ips,

asset_gateways,

tags,

last_tested_counts,

last_assets_scan

errors

object[]

Show child attributes

errors.detail

string

errors.id

string

errors.source

string

errors.status

integer

errors.title

string

included

any[]

links

object

Show child attributes

links.next

string

links.prev

string

meta

any

Get Top 5 CISA Known Exploitable VulnerabilitiesGet top-5 CISA known-exploitable vulnerabilities.

⌘I

Returns list of exploitable vulnerabilities on a given organization and asset uid

curl --request GET \
  --url https://client.synack.com/api/streaming/v1/{org_uid}/assets/{asset_uid}/vulns \
  --header 'Authorization: Bearer <token>'

{
  "data": {
    "attributes": "<unknown>",
    "id": "<string>",
    "links": {
      "next": "<string>",
      "prev": "<string>"
    },
    "meta": "<unknown>",
    "relationships": {},
    "type": "asset_list"
  },
  "errors": [
    {
      "detail": "<string>",
      "id": "<string>",
      "source": "<string>",
      "status": 123,
      "title": "<string>"
    }
  ],
  "included": [
    "<unknown>"
  ],
  "links": {
    "next": "<string>",
    "prev": "<string>"
  },
  "meta": "<unknown>"
}

Asset Management v2 API

Vulnerability Management API

Asset Tagging v1 API

Platform v1 API

Query API v1

Authorizations

Path Parameters

Query Parameters

Response