diff --git a/docs/reference/notifications/notification.proto b/docs/reference/notifications/notification.proto index 940a09fe..3f740376 100644 --- a/docs/reference/notifications/notification.proto +++ b/docs/reference/notifications/notification.proto @@ -224,6 +224,9 @@ message Vulnerability { optional double cvss_v4 = 19 [json_name = "cvssv4"]; optional string cvss_v4_vector = 20 [json_name = "cvssV4Vector"]; + // Whether the vulnerability is known to be exploited. + optional bool is_kev = 21 [json_name = "isKev"]; + message Alias { string id = 1 [json_name = "vulnId"]; string source = 2; diff --git a/docs/reference/notifications/schema.md b/docs/reference/notifications/schema.md index 8cc6360c..183a7ca2 100644 --- a/docs/reference/notifications/schema.md +++ b/docs/reference/notifications/schema.md @@ -967,6 +967,7 @@ Subject for GROUP_NEW_VULNERABILITIES_SUMMARY notifications. | `owasp_rr_vector` | `string` | | - | | `cvss_v4` | `double` | | - | | `cvss_v4_vector` | `string` | | - | +| `is_kev` | `bool` | Whether the vulnerability is known to be exploited. | - | diff --git a/docs/reference/policies/schema.md b/docs/reference/policies/schema.md index 6563b06a..324db66b 100644 --- a/docs/reference/policies/schema.md +++ b/docs/reference/policies/schema.md @@ -233,6 +233,7 @@ | `epss_percentile` | `double` | | - | | `cvssv4_vector` | `string` | | - | | `cvssv4_score` | `double` | | - | +| `is_kev` | `bool` | Whether the vulnerability is known to be exploited. | - |