Qualys Cloud Platform 10.27 (VM, PC) API Notification 1

Prabhas Gupte

Last updated on: April 2, 2024

A new release of Qualys Cloud Platform 10.27 (VM, PC) includes updated APIs which is targeted for release in April 2024. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.

What’s New

In this release we have introduced enhanced control over compliance data, user input validations, network identification, and EPSS as QDS factor for advanced vulnerability prioritization.

Manage Inactive Control Inclusion/Exclusion

POST /pcrs/2.0/posture/postureInfo

With this API enhancement, you can now choose to exclude inactive controls (SDC, UDC) from the host compliance posture information in the API response. A new parameter excludeInactiveControl has been introduced to exclude inactive controls.

User Information Validation

POST /msp/user.php
DTD or XSD changes: No

With this release, we have implemented user information input validations when adding or editing users. The list of validations added is available in the detailed release notes.

View Network Name in Host List Detection API

GET, POST /api/2.0/fo/asset/host/vm/detection
DTD or XSD changes: Yes

With this release, we have added the field – Network Name to the HLD API. The field displays the name of the network to which you are connected. The details to be displayed here are matched with the Network ID field and then displayed to the user.

Addition of EPSS as QDS Factor

GET /api/2.0/fo/asset/host/vm/detection
GET /api/2.0/fo/knowledge_base/qvs

DTD or XSD changes: Yes

With this release, EPSS (Exploit Prediction Scoring System) is added in Host List Detection API and KnowledgeBase (CVE centric API) API as a QDS factor. Prior to this, only CVSS, (Common Vulnerability Scoring System), RTI (Real Threat Indicators), and ECM (Exploit Code Maturity) QDS factor was used. Now with EPSS QDS factor, you can analyze the severity of vulnerability and prioritize vulnerability remediation.

Please refer the detailed release notes at https://cdn2.qualys.com/docs/release-notes/qualys-cloud-platform-10.27-api-release-notes.pdf

Share your Comments

Comments

Your email address will not be published. Required fields are marked *