You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: defender-endpoint/api/get-assessment-software-vulnerabilities.md
+2-19Lines changed: 2 additions & 19 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -31,9 +31,7 @@ ms.date: 07/09/2025
31
31
32
32
> Want to experience Microsoft Defender for Endpoint? [Sign up for a free trial.](https://go.microsoft.com/fwlink/p/?linkid=2225630)
33
33
34
-
Returns all known software vulnerabilities and their details for all devices, on a per-device basis.
35
-
36
-
Different API calls get different types of data. Because the amount of data can be large, there are three ways it can be retrieved:
34
+
The ability to export software vulnerabilities per device returns all known software vulnerabilities and their details for all devices, on a per-device basis. Different API calls get different types of data. Because the amount of data can be large, there are three ways it can be retrieved:
37
35
38
36
1.[Export software vulnerabilities assessment: **JSON response**](#1-export-software-vulnerabilities-assessment-json-response) The API pulls all data in your organization as Json responses. This method is best for _small organizations with less than 100-K devices_. The response is paginated, so you can use the \@odata.nextLink field from the response to fetch the next results.
39
37
@@ -116,7 +114,6 @@ GET /api/machines/SoftwareVulnerabilitiesByMachine
116
114
|SoftwareVendor|String|Name of the software vendor.|Google|
117
115
|SoftwareVersion|String|Version number of the software product.|81.0.4044.138|
118
116
|VulnerabilitySeverityLevel|String|Severity level assigned to the security vulnerability based on the CVSS score.|Medium|
119
-
|||||
120
117
121
118
### 1.6 Examples
122
119
@@ -299,19 +296,13 @@ GET /api/machines/SoftwareVulnerabilitiesExport
299
296
> - The files are GZIP compressed & in multiline JSON format.
300
297
> - The download URLs are valid for 1 hour unless the `sasValidHours` parameter is used.
301
298
> - For maximum download speed of your data, you can make sure you're downloading from the same Azure region that your data resides.
302
-
>
303
299
> - Each record is 1KB of data. You should take this into account when choosing the correct pageSize parameter for you.
304
300
> - Some extra columns might be returned in the response. These columns are temporary and might be removed so use only the documented columns.
305
301
306
-
<br>
307
-
308
-
****
309
-
310
302
Property (ID)|Data type|Description|Example of a returned value
311
303
:---|:---|:---|:---
312
304
Export files|array[string]|A list of download URLs for files holding the current snapshot of the organization.|["https://tvmexportstrstgeus.blob.core.windows.net/tvm-export...1", "https://tvmexportstrstgeus.blob.core.windows.net/tvm-export...2"]
313
305
GeneratedTime|String|The time that the export was generated.|2021-05-20T08:00:00Z
314
-
|
315
306
316
307
### 2.6 Examples
317
308
@@ -394,10 +385,6 @@ Each returned record contains all the data from the full export software vulnera
394
385
> - Some other columns might be returned in the response. These columns are temporary and might be removed so use only the documented columns.
395
386
> - The properties defined in the following table are listed alphabetically, by property ID. When running this API, the resulting output isn't necessarily returned in the same order listed in this table.
396
387
397
-
<br>
398
-
399
-
****
400
-
401
388
|Property (ID)|Data type|Description|Example of returned value|
402
389
|:---|:---|:---|:---|
403
390
|CveId |String|Unique identifier assigned to the security vulnerability under the Common Vulnerabilities and Exposures (CVE) system.|CVE-2020-15992|
@@ -422,7 +409,6 @@ Each returned record contains all the data from the full export software vulnera
422
409
|SoftwareVersion|String|Version number of the software product.|81.0.4044.138|
423
410
|Status|String|**New** (for a new vulnerability introduced on a device) (1) **Fixed** (if this vulnerability doesn't exist anymore on the device, which means it was remediated). (2) **Updated** (if a vulnerability on a device changed. The possible changes are: CVSS score, exploitability level, severity level, DiskPaths, RegistryPaths, RecommendedSecurityUpdate). |Fixed|
424
411
|VulnerabilitySeverityLevel|String|Severity level that is assigned to the security vulnerability and is based on the CVSS score.|Medium|
425
-
|||||
426
412
427
413
#### Clarifications
428
414
@@ -599,10 +585,7 @@ GET https://api.securitycenter.microsoft.com/api/machines/SoftwareVulnerabilityC
599
585
-[Export assessment methods and properties per device](get-assessment-methods-properties.md)
600
586
-[Export secure configuration assessment per device](get-assessment-secure-config.md)
601
587
-[Export software inventory assessment per device](get-assessment-software-inventory.md)
0 commit comments