improved
Vulnerability Management: Updated Risk Factor for List Plugins
2 months ago by Lance Duvall
The risk_factor property returned by the List plugins endpoint now honors the Vulnerability Severity Metric setting on the user's container. The Vulnerability Severity Metric can be set to either CVSSv2 or CVSSv3. Previously, the risk_factor property always defaulted to a plugin's CVSSv2 value, resulting in a mismatch with the user interface if customers selected CVSSv3 as the default severity metric.
This update affects the following endpoint:
| API Endpoint | Name | Update |
|---|---|---|
| GET /plugins/plugin | List plugins | The risk_factor response property now honors the Vulnerability Severity Metric setting on the user's container. |
For information about how to change the Vulnerability Severity Metric setting, see the Severity section on the General Settings page in the Tenable Vulnerability Management User Guide.