Skip to main content
POST
/
scans
/
cve
/
mac-address
/
cve
/
status
Update CVE Status
curl --request POST \
  --url https://api.altostrat.io/scans/cve/mac-address/cve/status \
  --header 'Authorization: Bearer <token>' \
  --header 'Content-Type: application/json' \
  --data '{
  "mac_address": "00:1A:2B:3C:4D:5E",
  "cve_id": "CVE-2023-1234",
  "status": "accepted",
  "justification": "This vulnerability is related to a service that is not exposed to the internet and is firewalled internally. Risk is considered low."
}'
{
  "data": {
    "id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "mac_address": "00:1A:2B:3C:4D:5E",
    "cve_id": "CVE-2023-1234",
    "status": "accepted",
    "justification": "Risk accepted due to internal-only service with no external access.",
    "scan_id": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "expiration_date": "2023-11-07T05:31:56Z",
    "created_by": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "updated_by": "3c90c3cc-0d44-4b50-8888-8dd25736052a",
    "created_at": "2023-11-07T05:31:56Z",
    "updated_at": "2023-11-07T05:31:56Z"
  },
  "message": "CVE status updated successfully"
}

Authorizations

Authorization
string
header
required

Enter your bearer token in the format: Bearer {token}

Body

application/json

The details of the CVE status update.

mac_address
string
required

The MAC address of the affected device.

Example:

"00:1A:2B:3C:4D:5E"

cve_id
string
required

The CVE identifier to update.

Example:

"CVE-2023-1234"

status
enum<string>
required

The new status for the vulnerability.

Available options:
accepted,
mitigated
Example:

"accepted"

justification
string
required

A detailed reason for the status change, for audit purposes.

Example:

"This vulnerability is related to a service that is not exposed to the internet and is firewalled internally. Risk is considered low."

Response

The CVE status was updated successfully. Returns the created status record.

data
object
message
string
Example:

"CVE status updated successfully"