WebVulnerability
No description
type WebVulnerability implements BaseFields, IssueInterface, VulnerabilityInterface {
aiAgentAnalysis: AiAgentAnalysis
asset: Asset!
assignedUsers: [PortalUserBasicInfoType!]
author: PortalUser!
category: String
compromisedEnvironment: Boolean!
createdAt: ISO8601DateTime!
description: String!
detail: WebVulnerabilityDetail!
history: [IssueHistory!]
id: ID
impactDescription(
blob: Boolean = false
): String!
impactLevel: ImpactLevelCategory
patterns: [String!]
permittedStatus: [IssueStatusLabel!]!
probabilityLevel: ProbabilityLevelCategory
project: Project
reference: String
riskAcceptedUntil: ISO8601DateTime
runningRetestProject: Project
severity: SeverityCategory
sla: IssueSLA!
solution: String
status: IssueStatusLabel!
statusHistory: [IssueStatusHistory!]!
stepsToReproduce(
blob: Boolean = false
): String!
summary(
blob: Boolean = false
): String!
title: String!
type: Issue!
updatedAt: ISO8601DateTime!
}
Fields
WebVulnerability.aiAgentAnalysis ● AiAgentAnalysis object
AI agent analysis information for this issue
WebVulnerability.asset ● Asset! non-null object
The asset associated with the vulnerability
WebVulnerability.assignedUsers ● [PortalUserBasicInfoType!] list object
WebVulnerability.author ● PortalUser! non-null object
The author who created the vulnerability
WebVulnerability.category ● String scalar
CWE Categories
WebVulnerability.compromisedEnvironment ● Boolean! non-null scalar
Indicates whether the environment has been compromised due to the vulnerability
WebVulnerability.createdAt ● ISO8601DateTime! non-null scalar
The date when record was created
WebVulnerability.description ● String! non-null scalar
A detailed description of the vulnerability
WebVulnerability.detail ● WebVulnerabilityDetail! non-null object
Detailed information about the Web vulnerability
WebVulnerability.history ● [IssueHistory!] list object
WebVulnerability.id ● ID scalar
The ID scalar type represents a unique identifier
WebVulnerability.impactDescription ● String! non-null scalar
A detailed description of the impact caused by the vulnerability
WebVulnerability.impactDescription.blob ● Boolean scalar
WebVulnerability.impactLevel ● ImpactLevelCategory enum
The impact level of the vulnerability
WebVulnerability.patterns ● [String!] list scalar
OWASP Patterns
WebVulnerability.permittedStatus ● [IssueStatusLabel!]! non-null enum
List of statuses available for change
WebVulnerability.probabilityLevel ● ProbabilityLevelCategory enum��
The probability level of the vulnerability being exploited
WebVulnerability.project ● Project object
Associated project
WebVulnerability.reference ● String scalar
Links for further information
WebVulnerability.riskAcceptedUntil ● ISO8601DateTime scalar
The datetime until which the risk is accepted
WebVulnerability.runningRetestProject ● Project object
Active Vulnerability Retest project associated with this vulnerability
WebVulnerability.severity ● SeverityCategory enum
The severity of the vulnerability
WebVulnerability.sla ● IssueSLA! non-null object
Computed SLA view (due_at, state, days_remaining) derived on read from the company's SLA matrix
WebVulnerability.solution ● String scalar
The solution or mitigation for the vulnerability
WebVulnerability.status ● IssueStatusLabel! non-null enum
The current status of the vulnerability
WebVulnerability.statusHistory ● [IssueStatusHistory!]! non-null object
List of previous statuses
WebVulnerability.stepsToReproduce ● String! non-null scalar
Steps to reproduce the vulnerability
WebVulnerability.stepsToReproduce.blob ● Boolean scalar
WebVulnerability.summary ● String! non-null scalar
A brief summary or description of the vulnerability
WebVulnerability.summary.blob ● Boolean scalar
WebVulnerability.title ● String! non-null scalar
The title of the vulnerability
WebVulnerability.type ● Issue! non-null enum
The type of the vulnerability (e.g., SAST, SCA, Web, Network, etc.)
WebVulnerability.updatedAt ● ISO8601DateTime! non-null scalar
The date when record was updated
Interfaces
BaseFields interface
IssueInterface interface
VulnerabilityInterface interface
Member Of
CreateWebVulnerabilityPayload object ● UpdateWebVulnerabilityPayload object
Contribute to the Docs
Found something outdated or missing? Help us improve the documentation with a quick suggestion or edit.
How to contributeResources
By exploring our content, you'll find resources that will enhance your understanding of the importance of a Security Application Program.
Conviso Blog: Explore our blog, which offers a collection of articles and posts covering a wide range of AppSec topics. The content on the blog is primarily in English.
Conviso's YouTube Channel: Access a wealth of informative videos covering various topics related to AppSec. Please note that the content is primarily in Portuguese.