Queries the details about a specific server that is exposed on the Internet.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer. OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes DescribeExposedInstanceDetail

The operation that you want to perform.

Set the value to DescribeExposedInstanceDetail.

Uuid String No fc82b966-4d70-4e01-bf4f-aa4076a5****

The UUID of the server that is exposed on the Internet.

Note You can call the DescribeExposedInstanceList operation to query the UUIDs of servers.

All Alibaba Cloud API operations must include common request parameters. For more information about common request parameters, see Common parameters.

For more information about sample requests, see the "Examples" section of this topic.

Response parameters

Parameter Type Example Description
ExposedChains Array of ExposedChain

The detailed information about the asset exposures.

AllVulList Array of ScaVulRecord

The details of all vulnerabilities on the server.

AliasName String Deserialization vulnerability of remote code execution (RCE) in Fastjson 1.2.68 and earlier versions

The alias of the vulnerability.

Name String SCA:ACSV-2020-052801

The name of the vulnerability.

Necessity String asap

The priority to fix the vulnerability. Valid values:

  • asap: high
  • later: medium
  • nntf: low
Note We recommend that you fix the vulnerabilities that have the high priority at the earliest opportunity.
Type String sca

The type of the vulnerability. Valid values:

  • cve: Linux software vulnerability
  • sys: Windows system vulnerability
  • cms: Web-CMS vulnerability
  • app: application vulnerability
  • emg: urgent vulnerability
  • sca: middleware vulnerability
Uuid String 4f9ce097-4a7d-48fe-baef-6960e5b6****

The UUID of the server.

ExposureComponent String openssl,openssh

The server component that is exposed on the Internet.

ExposureIp String 47.99.XX.XX

The public IP address that is exposed on the Internet.

ExposurePort String 22

The port that is exposed on the Internet.

ExposureType String INTERNET_IP

The resource from which the asset is exposed. Valid values:

  • INTERNET_IP: the public IP address of an Elastic Compute Service (ECS) instance
  • SLB: the public IP address of a Server Load Balancer (SLB) instance
  • EIP: the elastic IP address (EIP)
  • DNAT: the Network Address Translation (NAT) gateway that connects to the Internet by using the Destination Network Address Translation (DNAT) feature
ExposureTypeId String eip-bp1bkgowzam49rld3****

The ID of the instance to which the resource belongs. The valid values of this parameter vary based on the ExposureType parameter.

  • If the value of the ExposureType parameter is INTERNET_IP, this parameter is empty.
  • If the value of the ExposureType parameter is SLB, the value of this parameter is the ID of the SLB instance.
  • If the value of the ExposureType parameter is EIP, the value of this parameter is the ID of the EIP.
  • If the value of the ExposureType parameter is DNAT, the value of this parameter is the ID of the NAT gateway.
InstanceId String i-bp116qem8npvchqc****

The ID of the server.

InstanceName String worker-k8s-for-cs-c929ee2a145214f89a8b248005be5****

The name of the server.

InternetIp String 47.99.XX.XX

The public IP address of the server.

IntranetIp String 192.168.XX.XX

The private IP address of the server.

RealVulList Array of ScaVulRecord

The information about the vulnerabilities that are exposed on the Internet and can be exploited by attackers.

AliasName String Deserialization vulnerability of remote code execution (RCE) in Fastjson 1.2.68 and earlier versions

The alias of the vulnerability.

Name String SCA:ACSV-2020-052801

The name of the vulnerability.

Necessity String asap

The priority to fix the vulnerability. Valid values:

  • asap: high
  • later: medium
  • nntf: low
Note We recommend that you fix the vulnerabilities that have the high priority at the earliest opportunity.
Type String sca

The type of the vulnerability. Valid values:

  • cve: Linux software vulnerability
  • sys: Windows system vulnerability
  • cms: Web-CMS vulnerability
  • app: application vulnerability
  • emg: urgent vulnerability
  • sca: middleware vulnerability
Uuid String 4f9ce097-4a7d-48fe-baef-6960e5b6****

The UUID of the server.

RegionId String cn-hangzhou

The ID of the region where the server resides.

Note For more information about the mapping between the region IDs and region names, see Regions and zones.
Uuid String 4f9ce097-4a7d-48fe-baef-6960e5b6****

The UUID of the server.

RequestId String C590482B-54A7-4273-8115-9DBE2DE46B26

The ID of the request.

Examples

Sample requests

http(s)://[Endpoint]/?Action=DescribeExposedInstanceDetail
&Uuid=fc82b966-4d70-4e01-bf4f-aa4076a5****
&<Common request parameters>

Sample success responses

XML format

<DescribeExposedInstanceDetailResponse>
      <RequestId>C590482B-54A7-4273-8115-9DBE2DE46B26</RequestId>
      <ExposedChains>
            <ExposureType>EIP</ExposureType>
            <InstanceId>i-bp116qem8npvchqc****</InstanceId>
            <ExposureComponent>openssl,openssh</ExposureComponent>
            <ExposurePort>22</ExposurePort>
            <IntranetIp>192.168.XX.XX</IntranetIp>
            <InstanceName>worker-k8s-for-cs-c929ee2a145214f89a8b248005be5****</InstanceName>
            <RealVulList>
                  <Type>sca</Type>
                  <Uuid>4f9ce097-4a7d-48fe-baef-6960e5b6****</Uuid>
                  <AliasName>Deserialization vulnerability of RCE in Fastjson 1.2.68 and earlier versions</AliasName>
                  <Necessity>asap</Necessity>
                  <Name>SCA:ACSV-2020-052801</Name>
            </RealVulList>
            <AllVulList>
                  <Type>sca</Type>
                  <Uuid>4f9ce097-4a7d-48fe-baef-6960e5b6****</Uuid>
                  <AliasName>Deserialization vulnerability of RCE in Fastjson 1.2.68 and earlier versions</AliasName>
                  <Necessity>asap</Necessity>
                  <Name>SCA:ACSV-2020-052801</Name>
            </AllVulList>
            <AllVulList>
                  <Type>sca</Type>
                  <Uuid>4f9ce097-4a7d-48fe-baef-6960e5b6****</Uuid>
                  <AliasName>Kubernetes kubelet vulnerability caused by resource management errors</AliasName>
                  <Necessity>nntf</Necessity>
                  <Name>SCA:CVE-2020-8557</Name>
            </AllVulList>
            <Uuid>4f9ce097-4a7d-48fe-baef-6960e5b6****</Uuid>
            <InternetIp>47.99.XX.XX</InternetIp>
            <ExposureIp>47.99.XX.XX</ExposureIp>
            <ExposureTypeId>eip-bp1bkgowzam49rld3****</ExposureTypeId>
            <RegionId>cn-hangzhou</RegionId>
      </ExposedChains>
</DescribeExposedInstanceDetailResponse>

JSON format

{
    "RequestId": "C590482B-54A7-4273-8115-9DBE2DE46B26",
    "ExposedChains": [
        {
            "ExposureType": "EIP",
            "InstanceId": "i-bp116qem8npvchqc****",
            "ExposureComponent": "openssl,openssh",
            "ExposurePort": "22",
            "IntranetIp": "192.168.XX.XX",
            "InstanceName": "worker-k8s-for-cs-c929ee2a145214f89a8b248005be5****",
            "RealVulList": [
                {
                    "Type": "sca",
                    "Uuid": "4f9ce097-4a7d-48fe-baef-6960e5b6****",
                    "AliasName": "Deserialization vulnerability of RCE in Fastjson 1.2.68 and earlier versions",
                    "Necessity": "asap",
                    "Name": "SCA:ACSV-2020-052801"
                }
            ],
            "AllVulList": [
                {
                    "Type": "sca",
                    "Uuid": "4f9ce097-4a7d-48fe-baef-6960e5b6****",
                    "AliasName": "Deserialization vulnerability of RCE in Fastjson 1.2.68 and earlier versions",
                    "Necessity": "asap",
                    "Name": "SCA:ACSV-2020-052801"
                },
                {
                    "Type": "sca",
                    "Uuid": "4f9ce097-4a7d-48fe-baef-6960e5b6****",
                    "AliasName": "Kubernetes kubelet vulnerability caused by resource management errors",
                    "Necessity": "nntf",
                    "Name": "SCA:CVE-2020-8557"
                }
            ],
            "Uuid": "4f9ce097-4a7d-48fe-baef-6960e5b6****",
            "InternetIp": "47.99.XX.XX",
            "ExposureIp": "47.99.XX.XX",
            "ExposureTypeId": "eip-bp1bkgowzam49rld3****",
            "RegionId": "cn-hangzhou"
        }
    ]
}

Error codes

For a list of error codes, visit the API Error Center.