{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "title": "Advisory",
  "description": "A PSIRT security advisory for a Palo Alto Networks product.",
  "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-schema/security-advisory-api-advisory-schema.json",
  "type": "object",
  "properties": {
    "advisory_id": {
      "type": "string",
      "description": "Palo Alto Networks advisory identifier (e.g., PAN-SA-2024-0001)."
    },
    "cve_id": {
      "type": "string",
      "description": "CVE identifier (e.g., CVE-2024-3400)."
    },
    "title": {
      "type": "string",
      "description": "Advisory title summarizing the vulnerability."
    },
    "description": {
      "type": "string",
      "description": "Detailed description of the vulnerability including impact and attack vector."
    },
    "severity": {
      "type": "string",
      "enum": [
        "NONE",
        "LOW",
        "MEDIUM",
        "HIGH",
        "CRITICAL"
      ],
      "description": "Severity rating based on CVSS v3.1 base score."
    },
    "cvss_score": {
      "type": "number",
      "description": "CVSS v3.1 base score (0.0 to 10.0).",
      "minimum": 0.0,
      "maximum": 10.0
    },
    "cvss_vector": {
      "type": "string",
      "description": "CVSS v3.1 vector string (e.g., CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)."
    },
    "cwe": {
      "type": "string",
      "description": "CWE identifier for the vulnerability class."
    },
    "affected_products": {
      "type": "array",
      "description": "Products and version ranges affected by this vulnerability.",
      "items": {
        "type": "object",
        "properties": {
          "product": {
            "type": "string",
            "description": "Product name (e.g., PAN-OS, Cortex XDR Agent)."
          },
          "versions": {
            "type": "array",
            "items": {
              "type": "object",
              "properties": {
                "version": {
                  "type": "string",
                  "description": "Affected version or version range."
                },
                "status": {
                  "type": "string",
                  "enum": [
                    "Affected",
                    "Unaffected",
                    "Fixed"
                  ],
                  "description": "Vulnerability status for this version."
                }
              }
            }
          }
        }
      }
    },
    "fixed_versions": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Product versions in which the vulnerability is fixed."
    },
    "workarounds": {
      "type": "string",
      "description": "Available workarounds or mitigations if a fix is not yet deployed."
    },
    "exploit_status": {
      "type": "string",
      "enum": [
        "None",
        "Proof-of-Concept",
        "Active"
      ],
      "description": "Known exploit activity status."
    },
    "published_date": {
      "type": "string",
      "format": "date-time",
      "description": "Date and time when the advisory was first published."
    },
    "last_modified_date": {
      "type": "string",
      "format": "date-time",
      "description": "Date and time of the most recent advisory update."
    },
    "references": {
      "type": "array",
      "items": {
        "type": "object",
        "properties": {
          "url": {
            "type": "string",
            "format": "uri",
            "description": "Reference URL."
          },
          "description": {
            "type": "string",
            "description": "Description of the referenced resource."
          }
        }
      },
      "description": "External references and related advisories."
    }
  }
}