List asset vulnerabilities

GET {{baseUrl}}/workbenches/assets/:asset_id/vulnerabilities?date_range=67454373&filter.0.filter=?filter.0.filter=plugin.name&filter.0.quality=%26filter.0.quality=match&filter.0.value=%26filter.0.value=RHEL&filter.search_type=and

Retrieves a list of the vulnerabilities recorded for a specified asset. By default, this list is sorted by vulnerability count in descending order. The list returned is limited to 5,000. To retrieve more than 5,000 vulnerabilities, use the export-request API.

Note: This endpoint is not intended for large or frequent exports of vulnerability or assets data. If you experience errors, reduce the volume, rate, or concurrency of your requests or narrow your filters. Contact support if you continue to experience errors. Additionally, Tenable recommends the POST /vulns/export endpoint for large or frequent exports of vulnerability data, and the POST /assets/export endpoint for large or frequent exports of assets data.

For information and best practices for retrieving vulnerability and assets data from Tenable.io, see Retrieve Vulnerability Data from Tenable.io and Retrieve Asset Data from Tenable.io.

Requires BASIC [16] user permissions. See Permissions.

Request Params

KeyDatatypeRequiredDescription
date_rangenumberThe number of days of data prior to and including today that should be returned.
filter.0.filterstringThe name of the filter to apply to the exported scan report. You can find available filters by using the GET /filters/workbenches/assets endpoint. For more information about the format of this parameter, see Workbench Filters.
filter.0.qualitystringThe operator of the filter to apply to the exported scan report. You can find the operators for the filter using the GET /filters/workbenches/assets endpoint. For more information about the format of this parameter, see Workbench Filters.
filter.0.valuestringThe value of the filter to apply to the exported scan report. You can find valid values for the filter in the 'control' attribute of the objects returned by the GET /filters/workbenches/assets endpoint. For more information about the format of this parameter, see Workbench Filters.
filter.search_typestringFor multiple filters, specifies whether to use the AND or the OR logical operator. The default is AND. For more information about this parameter, see Workbench Filters.

RESPONSES

status: OK

{"vulnerabilities":[{"count":55,"plugin_family":"Port scanners","plugin_id":34220,"plugin_name":"Netstat Portscanner (WMI)","vulnerability_state":"Active","vpr_score":2.4,"accepted_count":0,"recasted_count":0,"counts_by_severity":[{"count":55,"value":0}],"severity":0},{"count":54,"plugin_family":"Windows","plugin_id":34252,"plugin_name":"Microsoft Windows Remote Listeners Enumeration (WMI)","vulnerability_state":"Active","vpr_score":6.3,"accepted_count":0,"recasted_count":0,"counts_by_severity":[{"count":54,"value":0}],"severity":0},{"count":21,"plugin_family":"Service detection","plugin_id":22964,"plugin_name":"Service Detection","vulnerability_state":"Active","vpr_score":4.5,"accepted_count":0,"recasted_count":0,"counts_by_severity":[{"count":21,"value":0}],"severity":0},{"count":18,"plugin_family":"Web Servers","plugin_id":24260,"plugin_name":"HyperText Transfer Protocol (HTTP) Information","vulnerability_state":"Active","vpr_score":5.5,"accepted_count":0,"recasted_count":0,"counts_by_severity":[{"count":18,"value":0}],"severity":0}],"total_vulnerability_count":3,"total_asset_count":0}