Get plugin details

GET {{baseUrl}}/workbenches/vulnerabilities/:plugin_id/info?date_range=67454373&filter.0.filter=?filter.0.filter=plugin.name&filter.0.quality=%26filter.0.quality=match&filter.0.value=%26filter.0.value=RHEL&filter.search_type=and

Retrieves the details for a plugin.

Note: This endpoint is not intended for large or frequent exports of vulnerability or assets data. If you experience errors, reduce the volume, rate, or concurrency of your requests or narrow your filters. Contact support if you continue to experience errors. Additionally, Tenable recommends the POST /vulns/export endpoint for large or frequent exports of vulnerability data, and the POST /assets/export endpoint for large or frequent exports of assets data.

For information and best practices for retrieving vulnerability and assets data from Tenable.io, see Retrieve Vulnerability Data from Tenable.io and Retrieve Asset Data from Tenable.io.

Requires BASIC [16] user permissions. See Permissions.

Request Params

KeyDatatypeRequiredDescription
date_rangenumberThe number of days of data prior to and including today that should be returned.
filter.0.filterstringThe name of the filter to apply to the exported scan report. You can find available filters by using the GET /filters/workbenches/vulnerabilities endpoint. For more information about the format of this parameter, see Workbench Filters.
filter.0.qualitystringThe operator of the filter to apply to the exported scan report. You can find the operators for the filter using the GET /filters/workbenches/vulnerabilities endpoint. For more information about the format of this parameter, see Workbench Filters.
filter.0.valuestringThe value of the filter to apply to the exported scan report. You can find valid values for the filter in the 'control' attribute of the objects returned by the GET /filters/workbenches/vulnerabilities endpoint. For more information about the format of this parameter, see Workbench Filters.
filter.search_typestringFor multiple filters, specifies whether to use the AND or the OR logical operator. The default is AND. For more information about this parameter, see Workbench Filters.

RESPONSES

status: OK

{"info":{"count":13,"vuln_count":14,"description":"The remote web server is affected by a command injection vulnerability in GNU Bash known as Shellshock. The vulnerability is due to the processing of trailing strings after function definitions in the values of environment variables. This allows a remote attacker to execute arbitrary code via environment variable manipulation depending on the configuration of the system.","synopsis":"The remote web server is affected by a remote code execution vulnerability.","solution":"Apply the referenced patch.","discovery":{"seen_first":"2019-12-31T17:15:52.000Z","seen_last":"2019-12-31T22:53:45.000Z"},"severity":4,"plugin_details":{"family":"CGI abuses","modification_date":"2017-12-31T00:00:00Z","name":"GNU Bash Environment Variable Handling Code Injection (Shellshock)","publication_date":"2014-12-31T00:00:00Z","type":"remote","version":null,"severity":4},"reference_information":[{"name":"bid","url":"http://www.securityfocus.com/bid/","values":[70103]},{"name":"cert","url":"http://www.kb.cert.org/vuls/id/","values":["252743"]},{"name":"cve","url":"http://web.nvd.nist.gov/view/vuln/detail?vulnId=","values":["CVE-2014-6271"]},{"name":"edb-id","url":"http://www.exploit-db.com/exploits/","values":["34766","34777","34765"]},{"name":"iava","values":["2014-A-0142"]},{"name":"osvdb","values":["112004"]}],"risk_information":{"risk_factor":"Critical","cvss_vector":"AV:N/AC:L/Au:N/C:C/I:C/A:C","cvss_base_score":"10.0","cvss_temporal_vector":"E:F/RL:OF/RC:ND","cvss_temporal_score":"8.3","cvss3_vector":null,"cvss3_base_score":null,"cvss3_temporal_vector":null,"cvss3_temporal_score":null,"stig_severity":null},"see_also":["http://seclists.org/oss-sec/2014/q3/650","http://www.nessus.org/u?dacf7829","https://www.invisiblethreat.ca/post/shellshock/"],"vulnerability_information":{"vulnerability_publication_date":"2014-12-31T00:00:00Z","exploited_by_malware":true,"patch_publication_date":"2014-12-31T00:00:00Z","exploit_available":true,"exploitability_ease":null,"asset_inventory":null,"default_account":null,"exploited_by_nessus":null,"in_the_news":true,"malware":null,"unsupported_by_vendor":null,"cpe":null,"exploit_frameworks":[{"name":"Core Impact"},{"name":"Metasploit","exploits":[{"name":"Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)","url":null}]}]},"vpr":{"score":9.6,"drivers":{"age_of_vuln":{"lower_bound":731,"upper_bound":0},"exploit_code_maturity":"HIGH","cvss3_impact_score":5.9,"cvss_impact_score_predicted":true,"threat_intensity_last28":"HIGH","threat_recency":{"lower_bound":0,"upper_bound":7},"threat_sources_last28":["Others","Mainstream Media","Code Repo and Paste Bins"],"product_coverage":"LOW"},"updated":"2019-12-31T10:10:57Z"}}}