{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "title": "Vulnerability",
  "description": "Vulnerability schema from Palo Alto Networks IoT Security API",
  "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-schema/iot-security-api-vulnerability-schema.json",
  "type": "object",
  "properties": {
    "id": {
      "type": "string",
      "description": "Unique vulnerability record identifier."
    },
    "cve": {
      "type": "string",
      "description": "CVE identifier (e.g., CVE-2023-12345)."
    },
    "vulnerability_name": {
      "type": "string",
      "description": "Vulnerability name."
    },
    "severity": {
      "type": "string",
      "enum": [
        "critical",
        "high",
        "medium",
        "low",
        "info"
      ],
      "description": "Vulnerability severity rating."
    },
    "cvss_score": {
      "type": "number",
      "format": "float",
      "description": "CVSS v3 base score."
    },
    "deviceid": {
      "type": "string",
      "description": "Device identifier affected by the vulnerability."
    },
    "affected_device_count": {
      "type": "integer",
      "description": "Number of devices affected by this vulnerability."
    },
    "description": {
      "type": "string",
      "description": "Vulnerability description."
    },
    "remediation": {
      "type": "string",
      "description": "Recommended remediation steps."
    },
    "first_detected": {
      "type": "string",
      "format": "date-time",
      "description": "Timestamp when the vulnerability was first detected."
    }
  }
}