Product Introduction
Purchase Guide
Quick Start
Operation Guide
- Overview
- Vulnerability Management
- COS Risk Monitoring
- Cloud Security Posture Management
- Database Risk Monitor
- Log Analysis
- Notification Center
API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Multi-account Management APIs
- Scan Task APIs
- Alarm Center APIs
- Risk Center APIs
- Asset Center APIs
- User Behavior Analysis APIs
- Cloud Boundary Analysis APIs
- Cloud API Anomaly Detection APIs
- Cloud Resource Configuration Check APIs
- AI-SPM APIs
- Skill Security Detection APIs
- Key Sandbox APIs
- IaC Detection APIs
- Report Download APIs
- Solid Protection APIs
- Cloud Security Center Overview APIs
- Data Types
- Error Codes
Related Protocol,
- Service Level Agreement
- Terms Of Service
FAQs
Cloud Security Center (Old Version)
- Product Introduction
- Purchase Guide
- Getting Started
- Operation Guide
Glossary

DescribeSearchBugInfo

Unduh

Mode fokus

Ukuran font

Terakhir diperbarui: 2026-06-18 18:03:19

1. API Description

Domain name for API request: csip.intl.tencentcloudapi.com.

This API is used to query information of a vulnerability.

A maximum of 20 requests can be initiated per second for this API.

We recommend you to use API Explorer

Try it

API Explorer provides a range of capabilities, including online call, signature authentication, SDK code generation, and API quick search. It enables you to view the request, response, and auto-generated examples.

2. Input Parameters

The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.

Parameter Name	Required	Type	Description
Action	Yes	String	Common Params. The value used for this API: DescribeSearchBugInfo.
Version	Yes	String	Common Params. The value used for this API: 2022-11-21.
Region	No	String	Common Params. This parameter is not required.
Id	Yes	String	1 when return emergency vulnerability, 2 when return emergency vulnerability list, 3 when collocation input CVEId field display vulnerability data
CVEId	No	String	CVE number of the vulnerability. It's required when `Id=3`.

3. Output Parameters

Parameter Name	Type	Description
Data	DataSearchBug	Vulnerability information and asset information
ReturnCode	Integer	Status code. Valid values: 0: successful; others: failed.
ReturnMsg	String	Status message. Valid values: success: successful query; fail: failed query.
RequestId	String	The unique request ID, generated by the server, will be returned for every request (if the request fails to reach the server for other reasons, the request will not obtain a RequestId). RequestId is required for locating a problem.

4. Example

Example1 Querying vulnerability information

Query emergency vulnerability info

Input Example

POST / HTTP/1.1
Host: csip.intl.tencentcloudapi.com
Content-Type: application/json
X-TC-Action: DescribeSearchBugInfo
<Common request parameters>

{
    "Id": "1"
}

Output Example

{
    "Response": {
        "Data": {
            "CFWPatch": "1",
            "CWPFix": 0,
            "CWPScan": "0",
            "CveId": "CVE-2024-0884",
            "DataAsset": [
                {
                    "AppID": "12435623",
                    "CVEId": "CVE-2012-0023",
                    "IsScan": 1,
                    "InfluenceAsset": 45,
                    "NotRepairAsset": 33,
                    "NotProtectAsset": 24,
                    "TaskId": "mis-qbskll7i",
                    "TaskPercent": 100,
                    "TaskTime": "1630291892",
                    "ScanTime": "2022-1-12"
                }
            ],
            "DataBug": [
                {
                    "CVEId": "CVE-2023-22518",
                    "CVSSScore": "9.8",
                    "CreateTime": "2023-12-17T11:25:43+08:00",
"Fix": "1. Currently, official updated versions are available. It is recommended that affected users upgrade to the following corresponding fixed versions:\nAtlassian Confluence >= 7.19.16\nAtlassian Confluence >= 8.3.4\nAtlassian Confluence >= 8.4.4\nAtlassian Confluence >= 8.5.3\nAtlassian Confluence >= 8.6.1\nReference link: https://www.atlassian.com/software/confluence/download-archives\n2. Mitigation solution\n(1) Refer to the following link to back up instances: https://confluence.atlassian.com/doc/production-backup-strategy-38797389.html;\n(2) Set ACL to limit externally accessible IPs;\n(3) It is advisable to delete instances from the internet based on the actual business situation until upgrading is possible."
                    "Id": 1012504,
                    "ImpactCOMPENT": "(atlassian) confluence",
                    "ImpactOs": "debian",
                    "ImpactVersion": "version<7.19.16,8.0.0<=version<8.3.4,8.4.0<=version<8.4.4,8.5.0<=version<8.5.3,8.6.0<=version<8.6.1",
                    "IsPublish": 1,
                    "Level": "extreme",
                    "PatchId": "pcmgr-452553",
                    "ProSupport": 0,
                    "Reference": "url",
                    "ReleaseTime": "2023-10-30 16:09:48",
"SubCategory": "Permission Escalation"
                    "Tag": "NETWORK,POC,KNOWN_EXPLOITED,APP",
                    "UpdateTime": "2023-12-17T11:25:43+08:00",
                    "VULCategory": 54,
"VULDescribe": "Confluence is a knowledge management and collaboration software developed by Atlassian, designed to help team collaboration, share information and create documents. Affected versions of Confluence Data Center/Server have an improper verification vulnerability. An unauthenticated attacker could construct malicious requests to escalate privileges and execute commands."
"VULName": "Atlassian Confluence Data Center and Server privilege bypass vulnerability (CVE-2023-22518)"
                }
            ],
            "DataSupport": [
                {
                    "VSSScan": true,
                    "CWPScan": "1",
                    "CFWPatch": "1",
                    "WafPatch": 1,
                    "CWPFix": 1,
                    "CveId": "CVE-2024-1889"
                }
            ],
            "StateCode": "1",
            "VSSScan": true,
            "WafPatch": 1
        },
        "RequestId": "ea962c2c-4d97-4412-9e3b-db533b59592b",
        "ReturnCode": 0,
        "ReturnMsg": "Success"
    }
}

5. Developer Resources

SDK

TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.

Command Line Interface

Tencent Cloud CLI 3.0

6. Error Code

There is no error code related to the API business logic. For other error codes, please see Common Error Codes.

Bantuan dan Dukungan

Apakah halaman ini membantu?

Anda juga dapat Menghubungi Penjualan atau Mengirimkan Tiket untuk meminta bantuan.

masukan

tencent cloud

Cloud Security Center