List vulnerabilities within the scope of a given audit

get

https://api.vanta.com/v1/audits/{auditId}/vulnerabilities

List all vulnerabilities based on selected filters.

Path Params

auditId

string

required

Query Params

query

string

Filter vulnerabilities by search query

pageSize

int32

1 to 100

Defaults to 10

Controls the maximum number of items returned in one response from the API.

pageCursor

string

A marker or pointer, telling the API where to start fetching items for the subsequent page in a paginated dataset. Note that the requested page will not include the item that corresponds to this cursor but will start from the one immediately after this cursor.

isDeactivated

boolean

Filter vulnerabilities by deactivation status.

externalVulnerabilityId

string

Filter vulnerabilities based on a specific external ID.

isFixAvailable

boolean

Filter vulnerabilities that have an available fix.

packageIdentifier

string

Filter vulnerabilities that are from a specific package.

slaDeadlineAfterDate

date-time

Filter vulnerabilities with a fix due after a specific timestamp

slaDeadlineBeforeDate

date-time

Filter vulnerabilities with a fix due before a specific timestamp

severity

string

enum

Filter vulnerabilities by severity. Possible values: CRITICAL, HIGH, MEDIUM, LOW.

Allowed:

integrationId

string

Filter vulnerabilities by the vulnerability scanner that detected them.

includeVulnerabilitiesWithoutSlas

boolean

Filter vulnerabilities without an SLA due date.

vulnerableAssetId

string

Filter vulnerabilities by a specific asset ID.

Response

Language

Credentials

Bearer

Response

Click Try It! to start a request and see the response here! Or choose an example:

application/json

200Ok