Queries vulnerability information by group.
Try it now
Test
RAM authorization
|
Action |
Access level |
Resource type |
Condition key |
Dependent action |
|
yundun-sas:DescribeGroupedVul |
get |
*All Resource
|
|
None |
Request parameters
|
Parameter |
Type |
Required |
Description |
Example |
| Lang |
string |
No |
The language type of the request and response. Default value: zh. Valid values:
|
zh |
| Type |
string |
No |
The type of the vulnerability to query. Default value: cve. Valid values:
|
cve |
| Uuids |
string |
No |
The UUIDs of the servers to query. Separate multiple UUIDs with commas (,). |
d42f938c-d962-48a0-90f9-05e4ea**** |
| AliasName |
string |
No |
The alias of the vulnerability to query. |
RHSA-2019:0230-Important: polkit security update |
| Necessity |
string |
No |
The priority of the vulnerability fix to query. Separate multiple priorities with commas (,). Valid values:
|
asap,later,nntf |
| Dealed |
string |
No |
Specifies whether the vulnerability is handled. Valid values:
|
n |
| CurrentPage |
integer |
No |
The page number of the first page to display in the query results. Default value: 1, which indicates that the results start from page 1. |
1 |
| PageSize |
integer |
No |
The number of vulnerability entries per page in a paged query. Default value: 10, which indicates that 10 vulnerability entries are displayed per page. |
20 |
| GroupId |
string |
No |
The ID of the asset group. |
235454 |
| CveId |
string |
No |
The CVE ID. Note
Call the DescribeVulListPage operation to obtain this parameter. |
CVE-2017-15420 |
| ContainerFieldName |
string |
No |
The container search field. Valid values:
|
appName |
| ContainerFieldValue |
string |
No |
The value that corresponds to ContainerFieldName. |
cc914b0df156d40148412afe4a581**** |
| TargetType |
string |
No |
The container query type. Valid values:
|
containerId |
| ClusterId |
string |
No |
The cluster ID. |
c88fb10da1168494091db6aafc5dd**** |
| SearchTags |
string |
No |
The label used for filtering. Valid values:
|
Code Execution |
| AttachTypes |
string |
No |
The vulnerability type. This query condition is valid only for application vulnerabilities. Separate multiple values with commas (,). Valid values:
|
sca |
| AssetType |
string |
No |
The Asset Type where the vulnerability is detected. Separate multiple types with commas (,). Valid values:
|
ECS,CONTAINER |
| ResourceDirectoryAccountId |
integer |
No |
The ID of the Alibaba Cloud account that is added as one of the member accounts in a resource folder. Note
Invoke the DescribeMonitorAccounts operation to obtain this parameter. |
127608589417**** |
| RaspDefend |
integer |
No |
Specifies whether Runtime Application Self-Protection (RASP) supports real-time protection against the vulnerability. Valid values:
|
1 |
Response elements
|
Element |
Type |
Description |
Example |
|
object |
The response for querying vulnerability information by group. |
||
| CurrentPage |
integer |
The page number of the current page in a paged query. |
1 |
| RequestId |
string |
The request ID, which is a unique identifier generated by Alibaba Cloud for the request. You can use this ID to troubleshoot issues. |
9BFA6D78-07EA-5C0A-9358-E4434573507B |
| PageSize |
integer |
The number of vulnerability entries per page in a paged query. Default value: 10, which indicates that 10 vulnerability entries are displayed per page. |
20 |
| TotalCount |
integer |
The total number of query results. |
1 |
| GroupedVulItems |
array<object> |
The vulnerability information returned by the query. |
|
|
object |
|||
| Type |
string |
The type of the vulnerability. Valid values:
|
cve |
| NntfCount |
integer |
The number of vulnerabilities with a fix priority of low. |
59 |
| RaspDefend |
integer |
Indicates whether RASP real-time protection is supported. Valid values:
Note
If this property is not present, RASP real-time protection is not supported. |
1 |
| HandledCount |
integer |
The number of handled vulnerabilities. |
0 |
| GmtFirst |
integer |
The timestamp when the vulnerability was first detected, in milliseconds. |
1639371046000 |
| GmtLast |
integer |
The timestamp when the vulnerability was last detected, in milliseconds. |
1639371446000 |
| Tags |
string |
The vulnerability label. Valid values:
|
Code Execution |
| LaterCount |
integer |
The number of vulnerabilities with a fix priority of medium. |
0 |
| AliasName |
string |
The alias of the vulnerability. |
RHSA-2017:0184-Important: mysql security update |
| Name |
string |
The name of the vulnerability. |
oval:com.redhat.rhsa:def:20170184 |
| TotalFixCount |
integer |
The total number of fixed vulnerabilities. |
0 |
| AsapCount |
integer |
The number of vulnerabilities with a fix priority of high. |
0 |
| Related |
string |
The list of CVEs associated with the vulnerability. |
CVE-2023-24881,CVE-2023-24898 |
| LanguageType |
string |
The language type associated with the vulnerability. Valid values:
Note
This parameter applies only to sca vulnerabilities. |
java |
Examples
Success response
JSON format
{
"CurrentPage": 1,
"RequestId": "9BFA6D78-07EA-5C0A-9358-E4434573507B",
"PageSize": 20,
"TotalCount": 1,
"GroupedVulItems": [
{
"Type": "cve",
"NntfCount": 59,
"RaspDefend": 1,
"HandledCount": 0,
"GmtFirst": 1639371046000,
"GmtLast": 1639371446000,
"Tags": "Code Execution",
"LaterCount": 0,
"AliasName": "RHSA-2017:0184-Important: mysql security update",
"Name": "oval:com.redhat.rhsa:def:20170184",
"TotalFixCount": 0,
"AsapCount": 0,
"Related": "CVE-2023-24881,CVE-2023-24898",
"LanguageType": "java"
}
]
}
Error codes
|
HTTP status code |
Error code |
Error message |
Description |
|---|---|---|---|
| 400 | NoPermission | no permission | |
| 400 | RdCheckNoPermission | Resource directory account verification has no permission. | |
| 500 | ServerError | ServerError | |
| 500 | RdCheckInnerError | Resource directory account service internal error. | |
| 403 | NoPermission | caller has no permission |
See Error Codes for a complete list.
Release notes
See Release Notes for a complete list.