Queries image vulnerabilities.

Debugging

OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer. OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes DescribeImageGroupedVulList

The operation that you want to perform. Set the value to DescribeImageGroupedVulList.

Type String No cve

The type of the vulnerability that you want to query. Valid values:

  • CVE: image system vulnerability
  • SCA: image application vulnerability
GroupId String No 1311

The ID of the asset group.

CveId String No CVE-2017-15420

The Common Vulnerabilities and Exposures (CVE) ID of the vulnerability.

Uuids String No uuid-13134124****

The IDs of assets. Separate multiple IDs with commas (,).

Name String No debian:10:CVE-2019-9893

The name of the vulnerability.

AliasName String No DSA-2019 libseccomp security vulnerability

The alias of the vulnerability.

PatchId Long No 1341512412

The ID of the patch that is used to fix the vulnerability.

Necessity String No asap

The priority to fix the vulnerability. Valid values:

  • asap: high. You must fix the vulnerability at the earliest opportunity.
  • later: medium. You can fix the vulnerability based on your business requirements.
  • nntf: low. You can ignore the vulnerability.
CurrentPage Integer No 1

The number of the page to return. Default value: 1.

PageSize Integer No 20

The number of entries to return on each page. Default value: 20.

RepoRegionId String No cn-hangzhou

The region ID of the image repository.

RepoInstanceId String No i-qewqrqcsadf****

The instance ID of the image repository.

RepoId String No qew****

The ID of the image repository.

RepoName String No libssh2

The name of the image repository.

RepoNamespace String No libssh2

The namespace to which the image repository belongs.

ImageTag String No oval

The tag added to the image.

ImageDigest String No w213412341dfsfasdfafadfasfasf

The digest of the image.

ImageLayer String No b1f5b9420803ad0657cf21566e3e20acc08581e7f22991249ef3aa80b8b1c587

The layer of the image.

Lang String No zh

The language of the content within the request and response. Default value: zh. Valid values:

  • zh: Chinese
  • en: English
IsLatest Integer No 0

Specifies whether to query the vulnerabilities in the latest images. If you do not specify this parameter, the vulnerabilities of all images are queried. Valid values:

  • 0: no
  • 1: yes

Response parameters

Parameter Type Example Description
CurrentPage Integer 2

The page number of the returned page.

RequestId String 5E244439-UJND-8BF7-26F36E21B9AA

The ID of the request, which is used to locate and troubleshoot issues.

PageSize Integer 20

The number of entries returned per page. Default value: 20.

TotalCount Integer 21

The total number of image system vulnerabilities.

GroupedVulItems Array of GroupedVulItem

The image vulnerabilities.

Status Integer 0

The status of the vulnerability. Valid values:

  • 0: unhandled
  • 1: handled
  • 2: verifying
  • 3: added to the whitelist
Type String cve

The type of the vulnerability. Valid values:

  • CVE: image system vulnerability
  • SCA: image application vulnerability
NntfCount Integer 29

The number of vulnerabilities that have the low priority.

GmtLast Long 1611201274000

The timestamp when the first scan was performed. Unit: milliseconds.

LastScanTime Long 1611201274000

The timestamp when the last scan was performed. Unit: milliseconds.

Tags String Code execution

The tag added to the vulnerability. Valid values:

  • Restart required
  • Remote exploitation
  • Exploit exists
  • Exploitable
  • Privilege escalation
  • Code execution
LaterCount Integer 26

The number of vulnerabilities that have the medium priority.

AliasName String DLA-1730-1: libssh2 LTS security update

The alias of the vulnerability.

Name String debian:9:CVE-2019-3858

The name of the vulnerability.

AsapCount Integer 26

The number of vulnerabilities that have the high priority.

Examples

Sample requests

http(s)://[Endpoint]/?Action=DescribeImageGroupedVulList
&Type=cve
&GroupId=1311
&CveId=CVE-2017-15420
&Uuids=uuid-13134124****
&Name=debian:10:CVE-2019-9893
&AliasName=DSA-2019 libseccomp security vulnerability
&PatchId=1341512412
&Necessity=asap
&CurrentPage=1
&PageSize=20
&RepoRegionId=cn-hangzhou
&RepoInstanceId=i-qewqrqcsadf****
&RepoId=qew****
&RepoName=libssh2
&RepoNamespace=libssh2
&ImageTag=oval
&ImageDigest=w213412341dfsfasdfafadfasfasf
&ImageLayer=b1f5b9420803ad0657cf21566e3e20acc08581e7f22991249ef3aa80b8b1c587
&Lang=zh
&IsLatest=0
&Common request parameters

Sample success responses

XML format 

HTTP/1.1 200 OK
Content-Type:application/xml

<DescribeImageGroupedVulListResponse>
    <CurrentPage>2</CurrentPage>
    <RequestId>5E244439-UJND-8BF7-26F36E21B9AA</RequestId>
    <PageSize>20</PageSize>
    <TotalCount>21</TotalCount>
    <GroupedVulItems>
        <Status>0</Status>
        <Type>cve</Type>
        <NntfCount>29</NntfCount>
        <GmtLast>1611201274000</GmtLast>
        <LastScanTime>1611201274000</LastScanTime>
        <Tags>Code execution</Tags>
        <LaterCount>26</LaterCount>
        <AliasName>DLA-1730-1: libssh2 LTS security update</AliasName>
        <Name>debian:9:CVE-2019-3858</Name>
        <AsapCount>26</AsapCount>
    </GroupedVulItems>
</DescribeImageGroupedVulListResponse>

JSON format 

HTTP/1.1 200 OK
Content-Type:application/json

{
  "CurrentPage" : 2,
  "RequestId" : "5E244439-UJND-8BF7-26F36E21B9AA",
  "PageSize" : 20,
  "TotalCount" : 21,
  "GroupedVulItems" : [ {
    "Status" : 0,
    "Type" : "cve",
    "NntfCount" : 29,
    "GmtLast" : 1611201274000,
    "LastScanTime" : 1611201274000,
    "Tags" : "Code execution",
    "LaterCount" : 26,
    "AliasName" : "DLA-1730-1: libssh2 LTS security update",
    "Name" : "debian:9:CVE-2019-3858",
    "AsapCount" : 26
  } ]
}

Error codes

For a list of error codes, visit the API Error Center.