Common Security Advisory Framework (CSAF)

Rversion finale: Australia

Mis à jour 12 mars 2026

1 minute de lecture

When used with Vulnerability Solution Management, the Common Security Advisory Framework (CSAF) enables automation security notifications through a machine-readable JSON format.

The CSAF lets you integrate with any solution intelligence vendor using the solution management framework to import the intelligence data. The CSAF security notifications can be one of the following types.

Security Advisories
Vulnerability Exploitability Exchange (VEX)
Security Incident Response
Informational Advisory

The CSAF only supports the file imports, URL imports, and API imports of security advisories from vendors.