Qualys Cloud Platform 10.27 (VM, PC) API Notification 1
Last updated on: April 2, 2024
A new release of Qualys Cloud Platform 10.27 (VM, PC) includes updated APIs which is targeted for release in April 2024. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.
What’s New
In this release we have introduced enhanced control over compliance data, user input validations, network identification, and EPSS as QDS factor for advanced vulnerability prioritization.
Manage Inactive Control Inclusion/Exclusion
POST /pcrs/2.0/posture/postureInfo
With this API enhancement, you can now choose to exclude inactive controls (SDC, UDC) from the host compliance posture information in the API response. A new parameter excludeInactiveControl
has been introduced to exclude inactive controls.
User Information Validation
POST /msp/user.php
DTD or XSD changes: No
With this release, we have implemented user information input validations when adding or editing users. The list of validations added is available in the detailed release notes.
View Network Name in Host List Detection API
GET, POST /api/2.0/fo/asset/host/vm/detection
DTD or XSD changes: Yes
With this release, we have added the field – Network Name to the HLD API. The field displays the name of the network to which you are connected. The details to be displayed here are matched with the Network ID field and then displayed to the user.
Addition of EPSS as QDS Factor
GET /api/2.0/fo/asset/host/vm/detection
GET /api/2.0/fo/knowledge_base/qvs
DTD or XSD changes: Yes
With this release, EPSS (Exploit Prediction Scoring System) is added in Host List Detection API and KnowledgeBase (CVE centric API) API as a QDS factor. Prior to this, only CVSS, (Common Vulnerability Scoring System), RTI (Real Threat Indicators), and ECM (Exploit Code Maturity) QDS factor was used. Now with EPSS QDS factor, you can analyze the severity of vulnerability and prioritize vulnerability remediation.
Please refer the detailed release notes at https://cdn2.qualys.com/docs/release-notes/qualys-cloud-platform-10.27-api-release-notes.pdf