Vulnerabilities List from Defender API not filtering by My Organization

Copper Contributor

Hi all,

when I consult the api for the list of vulnerabilities detected by Defender using this URL: GET https://api.securitycenter.microsoft.com/api/Vulnerabilities, I get a list of >250K vulnerabilities, but when I consult in the Defender Portal (Vulnerability Management --> Weakness) the list is 11K.

 

It seems that the API is not filtering vulnerabilites on "my organization", but the complete list of vulnerabilities known by Defender.

 

Is there any filter that I can apply to the API URL to bring only vulnerabilities on my organization?

 

Thanks and best regards,

Alberto Medina

0 Replies