This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 21%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDP%3C/text%3E%3C/svg%3E)
I'm working with the Microsoft Defender External Attack Surface Management (EASM) API, specifically the assets endpoint.
When I make a request using responseType: reduced and apply a filter for a specific CVE ID, the response does not include any information related to that particular CVE ID sometimes — even though the asset is confirmed to be affected.
However, using the same CVE filter with responseType: standard returns the expected data, including the relevant CVE details.
Can someone help clarify why the reduced response does not return the CVE information that was passed in filter? Are there known limitations or documentation around filtering by CVE in this mode?
Appreciate any insights — thanks in advance!
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Hi @Dev Parmar
Following up to see if the below answer was helpful. If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.
Hi @Dev Parmar
If the information below has been helpful in addressing your question, please accept the answer. This will help us and also improve searchability for others in the community who might be researching similar information.
Hi @Dev Parmar
The behavior you're observing with the Microsoft Defender External Attack Surface Management (EASM) API's assets endpoint is due to the design of the responseType parameter.
The EASM API's assets endpoint supports multiple responseType values, each determining the amount of data included in the response:
For your reference: assetresponsetype
When you use responseType=reduced, the API returns a limited subset of asset properties. This subset may not include detailed vulnerability information, such as associated CVE IDs. As a result, even if an asset is affected by a specific CVE, that information might not be present in the reduced response.
On the other hand, responseType=standard includes more comprehensive asset details, which typically encompass vulnerability data, including CVE associations. Therefore, filtering by a specific CVE ID and using responseType=standard is more likely to return the expected data.
To ensure that your filtered queries by CVE ID return complete and accurate information Use responseType=standard or responseType=full. These response types include detailed vulnerability information, making them suitable for CVE-based filtering.
Hope this helps. Do let us know if you any further queries.
If this answers your query, do click Accept Answer and Yes for was this answer helpful. And, if you have any further query do let us know.