Queries the statistics of vulnerabilities in one or more asset groups.


OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer.OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes GetVulStatistics

The operation that you want to perform.

Set the value to GetVulStatistics.

GroupIdList String Yes 9997897

The ID of the asset group. Separate multiple asset groups with commas (,).

Note You can call the DescribeAllGroups operation to query the IDs of asset groups.
TypeList String Yes cve

The type of the vulnerability whose statistics you want to query. Separate multiple vulnerability types with commas (,). Valid values:

  • cve: Linux software vulnerabilities
  • sys: Windows system vulnerabilities
  • cms: Web-CMS vulnerabilities
  • emg: urgent vulnerabilities
  • app: application vulnerabilities
  • sca: vulnerabilities that are detected based on software component analysis
SourceIp String No 10.12.XX.XX

The source IP address of the request.

All Alibaba Cloud API operations must include common request parameters. For more information about common request parameters, see Common parameters.

For more information about sample requests, see the "Examples" section of this topic.

Response parameters

Parameter Type Example Description
RequestId String 3FE272FA-7263-4554-A90F-A7857945A6D5

The ID of the request.

VulAsapSum Integer 16

The number of vulnerabilities that have the high priority.

VulLaterSum Integer 0

The number of vulnerabilities that have the medium priority.

VulNntfSum Integer 0

The number of vulnerabilities that have the low priority.


Sample requests

&<Common request parameters>

Sample success responses

XML format


JSON format

  "VulAsapSum": 16,
  "VulLaterSum": 0,
  "VulNntfSum": 0,
  "RequestId": "3FE272FA-7263-4554-A90F-A7857945A6D5"

Error codes

For a list of error codes, visit the API Error Center.