接口功能介绍
统计漏洞详情信息,包括漏洞名称、危害等级、cve编号、漏洞发布时间、漏洞类型、修复建议、参考链接以及影响的服务器信息。
接口约束
此功能为收费功能。确认已经购买系统配额,并且开启服务器防护。如果没有购买配额,可按照页面提示进行购买。如果没有开启防护,请在服务器列表页开启机器防护。
URI
POST /v1/vulnerability/detail
路径参数
无
Query参数
无
请求参数
请求头header参数
参数 | 是否必填 | 参数类型 | 说明 | 示例 | 下级对象 |
---|---|---|---|---|---|
regionid | 是 | String | 资源池id | 100054c0416811e9a6690242ac110002 | |
urlType | 是 | String | 请求地址类型。CTAPI | CTAPI | |
Content-Type | 是 | String | Content-Type | application/json |
请求体body参数
参数 | 是否必填 | 参数类型 | 说明 | 示例 | 下级对象 |
---|---|---|---|---|---|
currentPage | 是 | Integer | 当前页 | 1 | |
pageSize | 是 | Integer | 每页条数 | 10 | |
cve | 是 | String | CVE编号 | CVE-2017-12652 | |
osType | 否 | String | 系统类型 Windows\Linux,不传或者传其他任意值,则不限制服务器的osType查询 | Linux,针对服务器做限制 | |
title | 是 | String | 漏洞名称 | libpng 输入验证错误漏洞 | |
severity | 是 | String | 漏洞等级: 低危 中危 高危 超危 超高危 |
超危 |
响应参数
参数 | 参数类型 | 说明 | 示例 | 下级对象 |
---|---|---|---|---|
statusCode | String | 状态码 200-成功 | ||
error | String | 返回码 CTCSSCN_000000:成功 CTCSSCN_000001:失败 CTCSSCN_000003:用户未签署协议,安全卫士系统无法正常使用 CTCSSCN_000004:鉴权错误 CTCSSCN_000005:用户没有付费版配额,功能不可用 |
CTCSSCN_000000 | |
message | String | 返回信息 | 成功 | |
returnObj | Object | 返回对象 | map |
表 map
参数 | 参数类型 | 说明 | 示例 | 下级对象 |
---|---|---|---|---|
title | String | 漏洞名称 | Apache Subversion mod_dav_svn 整数溢出漏洞 | |
severity | String | 危害等级 | 高危 | |
cve | String | cve编号 | CVE-2015-5343 | |
publishAt | String | 漏洞发布时间 | 2016-04-15 | |
type | String | 漏洞类型 | 缓冲区错误 | |
solution | String | 修复建议 | 目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: http://subversion.apache.org/security/CVE-2015-5343-advisory.txt | |
url | String | 参考链接 | http://www.debian.org/security/2015/dsa-3424 | |
serverVulInfoPageInfo | Array of Strings | 服务器列表信息 | { "total":6, "list":[ { "id":"634f5cad416f592bc70ac1b1", "agentGuid":"DAF3C42D-4983-4CBC-ABA5-0A06DA93F209", "timestamp":"2022-10-19 10:10:53", "publicIp":null, "agentIp":"192.168.0.27", "custName":"vm-27", "osType":"linux", "status":0 }, { "id":"634f5ca3416f592bc70ac13d", "agentGuid":"2E76B306-DCA5-4B47-86E5-99207A16F4C0", "timestamp":"2022-10-19 10:10:43", "publicIp":null, "agentIp":null, "custName":null, "osType":"linux", "status":0 }, { "id":"634f5ca3416f592bc70ac13e", "agentGuid":"C5D2B56B-E071-47F5-85CC-A0DD781EF5E4", "timestamp":"2022-10-19 10:10:43", "publicIp":null, "agentIp":null, "custName":null, "osType":"linux", "status":0 }, { "id":"634f5ca1416f592bc70ac0f8", "agentGuid":"C39CD1FD-BEC1-44BF-ACF5-F7C412BD590C", "timestamp":"2022-10-19 10:10:41", "publicIp":null, "agentIp":"192.168.0.76", "custName":"vm-76", "osType":"linux", "status":0 }, { "id":"629f38c5893d984c798d93e2", "agentGuid":"F0111FE1-A07A-1B03-3B1D-2BDD3064D149", "timestamp":"2022-06-07 19:38:45", "publicIp":null, "agentIp":"192.168.0.17", "custName":"CentOS76-az1-2", "osType":"linux", "status":0 }, { "id":"629deec43cfbf2288b6e352e", "agentGuid":"4E38CB1F-145E-F73D-4430-0063B6D2BACA", "timestamp":"2022-06-06 20:10:44", "publicIp":null, "agentIp":"192.168.0.4", "custName":"CentOS76-az1-1", "osType":"linux", "status":0 } ], "pageNum":1, "pageSize":10, "size":0, "startRow":0, "endRow":0, "pages":1, "prePage":0, "nextPage":0, "isFirstPage":false, "isLastPage":false, "hasPreviousPage":false, "hasNextPage":false, "navigatePages":0, "navigatepageNums":null, "navigateFirstPage":0, "navigateLastPage":0 } |
表 serverVulInfo
参数 | 参数类型 | 说明 | 示例 | 下级对象 |
---|---|---|---|---|
total | Integer | 记录总数 | 5 | |
pageSize | Integer | 页大小 | 10 | |
pageNum | Integer | 当前页 | 1 | |
pages | Integer | 总页数 | 1 | |
list | Array of Objects | 服务器列表信息 | serverlist |
表 serverlist
参数 | 参数类型 | 说明 | 示例 | 下级对象 |
---|---|---|---|---|
id | String | 漏洞扫描编号 | 629deec43cfbf2288b6e352e | |
agentIp | String | 私网IP | 172.31.0.71 | |
publicIp | String | 公网IP | 172.31.0.71 | |
custName | String | 服务器名称 | vm-1634888455-0003 | |
osType | String | 操作系统 | linux | |
agentGuid | String | agentGuid | 2F828AAE-55BF-410D-B393-C053AC8742F4 | |
status | Integer | 状态 1:已处理 0:未处理 2:已加白 |
2 |
枚举参数
无
请求示例
请求url
无
请求头header
{"regionid": "100054c0416811e9a6690242ac110002","Content-Type":"application/json","urlType": "CTAPI"}
请求体body
{"cve":"CVE-2015-5343","title":"Apache Subversion mod_dav_svn 整数溢出漏洞","severity":"高危","currentPage":1,"pageSize":10,"osType":"Linux"}
响应示例
{"statusCode": "200","error": "CTCSSCN_000000","message": "查询成功!","returnObj":{"title":"Apache Subversion mod_dav_svn 整数溢出漏洞","cve":"CVE-2015-5343","type":"缓冲区错误","severity":"高危","publishAt":"2016-04-15","url":"http://www.debian.org/security/2015/dsa-3424","solution":"目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接: \nhttp://subversion.apache.org/security/CVE-2015-5343-advisory.txt","serverVulInfoPageInfo":{"total":6,"list":[{"id":"634f5cad416f592bc70ac1b1","agentGuid":"DAF3C42D-4983-4CBC-ABA5-0A06DA93F209","timestamp":"2022-10-19 10:10:53","publicIp":null,"agentIp":"192.168.0.27","custName":"vm-27","osType":"linux","status":0},{"id":"634f5ca3416f592bc70ac13d","agentGuid":"2E76B306-DCA5-4B47-86E5-99207A16F4C0","timestamp":"2022-10-19 10:10:43","publicIp":null,"agentIp":null,"custName":null,"osType":"linux","status":0},{"id":"634f5ca3416f592bc70ac13e","agentGuid":"C5D2B56B-E071-47F5-85CC-A0DD781EF5E4","timestamp":"2022-10-19 10:10:43","publicIp":null,"agentIp":null,"custName":null,"osType":"linux","status":0},{"id":"634f5ca1416f592bc70ac0f8","agentGuid":"C39CD1FD-BEC1-44BF-ACF5-F7C412BD590C","timestamp":"2022-10-19 10:10:41","publicIp":null,"agentIp":"192.168.0.76","custName":"vm-76","osType":"linux","status":0},{"id":"629f38c5893d984c798d93e2","agentGuid":"F0111FE1-A07A-1B03-3B1D-2BDD3064D149","timestamp":"2022-06-07 19:38:45","publicIp":null,"agentIp":"192.168.0.17","custName":"CentOS76-az1-2","osType":"linux","status":0},{"id":"629deec43cfbf2288b6e352e","agentGuid":"4E38CB1F-145E-F73D-4430-0063B6D2BACA","timestamp":"2022-06-06 20:10:44","publicIp":null,"agentIp":"192.168.0.4","custName":"CentOS76-az1-1","osType":"linux","status":0}],"pageNum":1,"pageSize":10,"size":0,"startRow":0,"endRow":0,"pages":1,"prePage":0,"nextPage":0,"isFirstPage":false,"isLastPage":false,"hasPreviousPage":false,"hasNextPage":false,"navigatePages":0,"navigatepageNums":null,"navigateFirstPage":0,"navigateLastPage":0}},"success":false}
状态码
请参考 状态码
错误码
请参考 错误码