Threats API (Lookout)
Access CVE data, threat actors, and advisory information.
CVE Endpoints
List CVEs
GET /api/v1/threats/cves
Query Parameters:
| Parameter | Type | Description |
|---|---|---|
severity | string | Filter: critical, high, medium, low |
vendor | string | Filter by affected vendor |
search | string | Full-text search (CVE ID, title, description) |
matching | boolean | Only CVEs matching your device inventory |
limit | number | Results per page (default: 50, max: 200) |
offset | number | Pagination offset |
Get CVE Detail
GET /api/v1/threats/cves/:cveId
Returns full CVE details including CVSS vector, EPSS score, affected products, references, and matched devices from your inventory.
Threat Actors
List Threat Actors
GET /api/v1/threats/actors
Get Threat Actor
GET /api/v1/threats/actors/:id
Dashboard
Get Threat Dashboard
GET /api/v1/threats/dashboard
Returns summary statistics: total CVEs, critical count, exploitable count, threat actor count, recent advisories, and feed sync status.
Sync Status
Get Feed Sync Status
GET /api/v1/threats/sync-status
Returns the last sync time and record counts for NVD, CISA KEV, and EPSS data sources.