Forum Discussion
API - Vulnerabilities.read.all and Score.Read.All
Trying to leverage defender metrics for management reporting (things like ExposureScore, SecureScore, etc. I'm interested in absolutely everything to get the right PowerBI dashboard) When assigning ...
Hi, I was also struggling for hours figuring out what is happening. Apparently, the documentation from Microsoft , as of 13.08.2025, is either wrong or obsolete. In my case, I was trying to get the Exposure Score from WindowsDefenderATP . In the app registration, API permission for Score.ReadAll is granted.
As per the API documentation page, to get the exposure score, I have to use the request as
GET https://api.security.microsoft.com/api/exposureScore .
But after hours of toil I found that the api end point to use is
GET https://api.securitycenter.microsoft.com/api/exposureScore.
Same with scope , instead of "https://api.security.microsoft.com/.default" , we should use "https://api.securitycenter.microsoft.com/.default"