DescribeRiskCenterAssetViewVULRiskList
Last updated:2026-01-29 18:11:49
DescribeRiskCenterAssetViewVULRiskList
Last updated: 2026-01-29 18:11:49
1. API Description
Domain name for API request: csip.intl.tencentcloudapi.com.
This API is used to query the list of vulnerabilities by assets.
A maximum of 20 requests can be initiated per second for this API.
We recommend you to use API Explorer
Try it
API Explorer provides a range of capabilities, including online call, signature authentication, SDK code generation, and API quick search. It enables you to view the request, response, and auto-generated examples.
2. Input Parameters
The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.
| Parameter Name | Required | Type | Description |
|---|---|---|---|
| Action | Yes | String | Common Params. The value used for this API: DescribeRiskCenterAssetViewVULRiskList. |
| Version | Yes | String | Common Params. The value used for this API: 2022-11-21. |
| Region | No | String | Common Params. This parameter is not required. |
| MemberId.N | No | Array of String | Group Account Member ID |
| Filter | No | Filter | Filter conditions |
| Tags.N | No | Array of AssetTag | Asset tags |
3. Output Parameters
| Parameter Name | Type | Description |
|---|---|---|
| TotalCount | Integer | Total number of entries |
| Data | Array of AssetViewVULRisk | List of vulnerabilities |
| StatusLists | Array of FilterDataObject | List of risk handling status |
| LevelLists | Array of FilterDataObject | List of risk levels |
| FromLists | Array of FilterDataObject | List of check source |
| VULTypeLists | Array of FilterDataObject | List of vulnerability types |
| InstanceTypeLists | Array of FilterDataObject | List of asset types |
| RequestId | String | The unique request ID, generated by the server, will be returned for every request (if the request fails to reach the server for other reasons, the request will not obtain a RequestId). RequestId is required for locating a problem. |
4. Example
Example1 Obtain Vulnerability Risk List from Asset's Perspective
Obtain Vulnerability Risk List from Asset's Perspective
Input Example
POST / HTTP/1.1
Host: csip.intl.tencentcloudapi.com
Content-Type: application/json
X-TC-Action: DescribeRiskCenterAssetViewVULRiskList
<Common request parameters>
{
"MemberId": [
"mem-68b8087a65268000"
],
"Filter": {
"Limit": 1,
"Offset": 0
}
}Output Example
{
"Response": {
"Data": [
{
"AffectAsset": "ins-9527",
"AppId": "1302111215",
"AppName": "libcurl-minimal,curl",
"AppVersion": "7.61.1-18.el8",
"CVE": "CVE-2023-27536",
"CWPVersion": 0,
"Component": "curl,libcurl-minimal",
"Describe": "describe info",
"EMGCVulType": 0,
"FirstTime": "2024-08-29 00:10:36",
"Fix": "Stay tuned for vendor announcements or upgrade to the latest version. We recommend updating your current system or software to the latest version to complete the vulnerability fix."
"From": "Container detection"
"Id": "11fc83d411bad6***71e4f9ef862dc",
"Index": "5f31127***99f4ae379c0880d43c285",
"InstanceId": "sha256:5d***dc976460b***c8a1ad043720b***fc16c52c45d4847e53fadb6",
"InstanceName": "centos",
"InstanceType": "Local",
"InstanceUUID": "3cbf2d8f-c40a-452a-92ec-140f9b2d29a2",
"IsSupportDetect": false,
"IsSupportRepair": false,
"Level": "extreme",
"Nick": "Sheng Sheng Wu Long"
"POCId": "pcmgr-407***",
"Payload": "7.61.1-18.el8",
"Port": "80",
"RecentTime": "2024-10-30 11:20:39",
"References": "https://hackerone.com/reports/1895135",
"Service": "service",
"Status": 0,
"Uin": "10001122178",
"VULName": "Curl Identity Authentication Bypass Vulnerability (CVE-2023-27536)"
"VULType": "Other"
"VULURL": "http://url"
}
],
"FromLists": [
{
"Text": "Cloud Security Center (CSC)"
"Value": "0"
},
{
"Text": "Host detection"
"Value": "1"
},
{
Container detection
"Value": "5"
}
],
"InstanceTypeLists": [
{
managed cluster
"Value": "managed_cluster"
},
{
"Text": "CVM",
"Value": "CVM"
},
{
local image
"Value": "Local"
},
{
"Text": "CLB",
"Value": "CLB"
}
],
"LevelLists": [
{
Serious
"Value": "extreme"
},
{
"Text": "High risk",
"Value": "high"
},
{
"Text": "Medium risk"
"Value": "middle"
},
{
Low risk
"Value": "low"
},
{
"Text": "Note",
"Value": "info"
}
],
"RequestId": "efdf251a-7f1a-4b9b-8e61-a19fc018ffa9",
"StatusLists": [
{
"Text": "unprocessed"
"Value": "0"
},
{
"Text": "Tag processed"
"Value": "1"
},
{
ignored
"Value": "2"
},
{
"Text": "Fixed"
"Value": "3"
}
],
"TotalCount": 532,
"VULTypeLists": [
{
information leakage
"Value": "information leakage"
},
{
Fix logic error
"Value": "Fix logic error"
},
{
"Text": "Other",
"Value": "Other"
},
{
"Text": "Path traversal"
"Value": "Path traversal"
},
{
Authorization issue
"Value": "Authorization issue"
},
{
"Text": "Injection vulnerability"
"Value": "Injection vulnerability"
},
{
"Text": "Code injection",
"Value": "Code injection"
},
{
Buffer overflow
"Value": "buffer overflow"
},
{
Misconfiguration
"Value": "Configuration error"
},
{
Encryption issue
"Value": "encryption issue"
},
{
Cross-site scripting
"Value": "cross-site scripting"
},
{
"Text": "Command injection"
"Value": "Command injection"
}
]
}
}5. Developer Resources
SDK
TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.
- Tencent Cloud SDK 3.0 for Python
- Tencent Cloud SDK 3.0 for Java
- Tencent Cloud SDK 3.0 for PHP
- Tencent Cloud SDK 3.0 for Go
- Tencent Cloud SDK 3.0 for Node.js
- Tencent Cloud SDK 3.0 for .NET
- Tencent Cloud SDK 3.0 for C++
Command Line Interface
6. Error Code
There is no error code related to the API business logic. For other error codes, please see Common Error Codes.
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No
Feedback