Identifies all appearances of this vulnerability in the package for a specific distro/location. For example: glibc in cpe:/o:debian:debian_linux:8 for versions 2.1 - 2.2

Attributes

• cpeUri (type: String.t, default: nil) - Required. The CPE URI in cpe format in which the vulnerability manifests. Examples include distro or storage location for vulnerable jar.
• description (type: String.t, default: nil) - A vendor-specific description of this note.
• fixedLocation (type: GoogleApi.ContainerAnalysis.V1beta1.Model.VulnerabilityLocation.t, default: nil) - The fix for this specific package version.
• isObsolete (type: boolean(), default: nil) - Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.
• maxAffectedVersion (type: GoogleApi.ContainerAnalysis.V1beta1.Model.Version.t, default: nil) - The max version of the package in which the vulnerability exists.
• minAffectedVersion (type: GoogleApi.ContainerAnalysis.V1beta1.Model.Version.t, default: nil) - The min version of the package in which the vulnerability exists.
• package (type: String.t, default: nil) - Required. The name of the package where the vulnerability was found.
• packageType (type: String.t, default: nil) - The type of package; whether native or non native(ruby gems, node.js packages etc).
• severityName (type: String.t, default: nil) - The severity (eg: distro assigned severity) for this vulnerability.
• source (type: String.t, default: nil) - The source from which the information in this Detail was obtained.
• sourceUpdateTime (type: DateTime.t, default: nil) - The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.
• vendor (type: String.t, default: nil) - The name of the vendor of the product.