Domain name for API request: tcss.intl.tencentcloudapi.com.
This API is used to query the list of vulnerabilities in an image.
A maximum of 20 requests can be initiated per second for this API.
The following request parameter list only provides API request parameters and some common parameters. For the complete common parameter list, see Common Request Parameters.
| Parameter Name | Required | Type | Description |
|---|---|---|---|
| Action | Yes | String | Common Params. The value used for this API: DescribeAssetImageVulList. |
| Version | Yes | String | Common Params. The value used for this API: 2020-11-01. |
| Region | No | String | Common Params. This parameter is not required. |
| ImageID | Yes | String | Image ID |
| Limit | No | Integer | Number of results to be returned. Default value: 10. Maximum value: 100. |
| Offset | No | Integer | Offset. Default value: 0. |
| Filters.N | No | Array of AssetFilters | Filter1, 2, 3, 4. |
| By | No | String | Sorting field: Level. |
| Order | No | String | Sorting order. Valid values: +, -. |
| Parameter Name | Type | Description |
|---|---|---|
| List | Array of ImagesVul | List of image vulnerabilities |
| TotalCount | Integer | Total number |
| RequestId | String | The unique request ID, generated by the server, will be returned for every request (if the request fails to reach the server for other reasons, the request will not obtain a RequestId). RequestId is required for locating a problem. |
POST / HTTP/1.1
Host: tcss.intl.tencentcloudapi.com
Content-Type: application/json
X-TC-Action: DescribeAssetImageVulList
<Common request parameters>
{
"ImageID": "csnjkcnshj"
}
{
"Response": {
"TotalCount": 1,
"List": [
{
"AttackLevel": 0,
"CVEID": "CVE-2016-5131",
"CVSSV3Desc": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"CVSSV3Score": 8.8,
"Category": "CODE_INJECTION",
"CategoryType": "SYSTEM",
"Component": "libxml2",
"DefenseSolution": "We recommend that you update the current system or software to the latest version to complete vulnerability fixes."
"Des": "Google Chrome is a Web browser developed by Google, a company in the United States. Libxml2 is a C language-based function library component used to parse XML documents. Versions prior to Libxml2 2.9.4 used in Google Chrome 52.0.2743.82 and earlier have a use-after-free vulnerability. An attacker can exploit this security vulnerability to cause denial of service."
"FixedVersions": "0:2.9.1-6.tl2.4",
"IsSuggest": true,
"Level": 2,
"Name": "libxml2 use-after-free vulnerability (CVE-2016-5131)"
"OfficialSolution": "Upgrade to the latest version without vulnerabilities."
"Reference": "[\"http://googlechromereleases.blogspot.com/2016/07/stable-channel-update.html\", \"http://lists.apple.com/archives/security-announce/2016/Sep/msg00006.html\", \"http://lists.apple.com/archives/security-announce/2016/Sep/msg00008.html\", \"http://lists.apple.com/archives/security-announce/2016/Sep/msg00010.html\", \"http://lists.apple.com/archives/security-announce/2016/Sep/msg00011.html\", \"http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00020.html\", \"http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00021.html\", \"http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00022.html\", \"http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00028.html\", \"http://rhn.redhat.com/errata/RHSA-2016-1485.html\", \"http://www.debian.org/security/2016/dsa-3637\", \"http://www.securityfocus.com/bid/92053\", \"http://www.securitytracker.com/id/1036428\", \"http://www.securitytracker.com/id/1038623\", \"http://www.ubuntu.com/usn/USN-3041-1\", \"https://bugzilla.redhat.com/show_bug.cgi?id=1358641\", \"https://codereview.chromiu\"]",
"SubmitTime": "2016-07-24T11:59:00+08:00",
"Tag": [
"NETWORK"
],
"Version": "2.9.1-6.tl2.3"
}
],
"RequestId": "8bc803fd-d85d-47b8-9e2b-9644674be677"
}
}
TencentCloud API 3.0 integrates SDKs that support various programming languages to make it easier for you to call APIs.
The following only lists the error codes related to the API business logic. For other error codes, see Common Error Codes.
| Error Code | Description |
|---|---|
| InternalError | An internal error occurred. |
| InvalidParameter.InvalidFormat | The parameter format is incorrect. |
| InvalidParameter.MissingParameter | The required parameter is missing. |
| InvalidParameter.ParsingError | A parameter parsing error occurred. |
| ResourceNotFound | The resource does not exist. |
文档反馈