Oracle Cloud Infrastructure Documentation

Exporting a Vulnerabilities Report

Export all vulnerabilities reports as a file in comma-separated value (CSV) format for offline analysis.

    1. Open the navigation menu and click Identity & Security. Under Scanning, click Vulnerability Reports.
    2. Select the compartment in which you created the target.
    3. Click Export CSV.

    Example output:

    resultId,compartmentId,cveId,severity,state,title,lastDetected,firstDetected,hostCount
1234,ocid1.compartment.example123,CVE-2018-12345,HIGH,OPEN,CVE-2018-12345,2020-12-22T12:47:18Z,2020-12-21T16:47:25Z,3

  • Use the oci vulnerability-scanning host vulnerability export-csv command and required parameters to export a list of the vulnerabilities for a host in a compartment in CSV format:

    export compartment_id=<substitute-value-of-compartment_id> # https://docs.cloud.oracle.com/en-us/iaas/tools/oci-cli/latest/oci_cli_docs/cmdref/vulnerability-scanning/host/vulnerability/export-csv.html#cmdoption-compartment-id
export file=<substitute-value-of-file> # https://docs.cloud.oracle.com/en-us/iaas/tools/oci-cli/latest/oci_cli_docs/cmdref/vulnerability-scanning/host/vulnerability/export-csv.html#cmdoption-file
export time_last_detected_greater_than_or_equal_to=<substitute-value-of-time_last_detected_greater_than_or_equal_to> # https://docs.cloud.oracle.com/en-us/iaas/tools/oci-cli/latest/oci_cli_docs/cmdref/vulnerability-scanning/host/vulnerability/export-csv.html#cmdoption-time-last-detected-greater-than-or-equal-to
export time_last_detected_less_than_or_equal_to=<substitute-value-of-time_last_detected_less_than_or_equal_to> # https://docs.cloud.oracle.com/en-us/iaas/tools/oci-cli/latest/oci_cli_docs/cmdref/vulnerability-scanning/host/vulnerability/export-csv.html#cmdoption-time-last-detected-less-than-or-equal-to

oci vulnerability-scanning host vulnerability export-csv --compartment-id $compartment_id --file $file --time-last-detected-greater-than-or-equal-to $time_last_detected_greater_than_or_equal_to --time-last-detected-less-than-or-equal-to $time_last_detected_less_than_or_equal_to

    For a complete list of flags and variable options for CLI commands, see the Command Line Reference.

  • Run the ExportHostVulnerabilityCsv operation to export a list of the vulnerabilities for a host in a compartment in CSV format.