{ "code": 0, "success": true, "data": [ { "id": 1386,//内部自增ID "scanId": "78046820-5008-4fb0-b9ce-f1e2eee6dc98", "ip": "10.100.100.1",//IP "oid": "1.3.6.1.4.1.25623.1.0.10736",//漏洞ID "location": "135/tcp",//漏洞位置,如161/udp, 如果是 general/tcp或者 general/icmp等 general/开头的,则不是端口层的漏洞 "detail": "xxxx",//漏洞详情 "createdAt": "2022-11-27 09:22:30",//漏洞发现时间 "updatedAt": "", "plugin": { "id": 0, "oid": "1.3.6.1.4.2.20706", "nameCN": "Linux kernel Marvell WiFi chip driver 缓冲区错误漏洞",//漏洞名称 "descCN": "Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。Marvell WiFi chip driver是其中的的一个WiFi芯片驱动程序。 \nLinux kernel 3.x.x版本(所有版本)和4.18.0之前的4.x.x版本中的Marvell WiFi chip driver存在缓冲区错误漏洞。该漏洞源于网络系统或产品在内存上执行操作时,未正确验证数据边界,导致向关联的其他内存位置上执行了错误的读写操作。攻击者可利用该漏洞导致缓冲区溢出或堆溢出等。",//漏洞描述,withPluginInfo=true才返回 "adviceCN": "目前厂商暂未发布修复措施解决此安全问题,使用此软件的用户随时关注厂商主页或参考网址以获取解决办法: \nhttps://www.kernel.org/",//漏洞建议,withPluginInfo=true才返回 "family": "其它类系统漏洞", "cves": "CVE-2019-14895", "bids": "", "cnnvd": "CNNVD-201911-1322", "cnvd": "CNCVE-2019-14895", "cncve": "CNCVE-2019-14895", "ms": "", "cvss": 7.5, "cvss3": 9.8, "level": 1,//漏洞等级,1-严重,2-高危,3-中危,4-低危,5-信息 "levelStr": "严重", "publicDate": "2019-11-22T00:00:00+08:00", "danger": false, "pocType":0,//0-未知,1-暂无可利用代码,2-POC已公开,3-EXP已公开,4-漏洞利用攻击武器化 "pocTypeStr":"暂无可利用代码/POC已公开/EXP已公开/漏洞利用攻击武器化"//利用状态,可能为空 }, "statusStr": "待处理", "status": 1//漏洞状态,1-"待处理",2-"处理中",3-"已延期",4-"已修复",5-"误报" }, { "logType": "", "id": 1381, "scanId": "78046820-5008-4fb0-b9ce-f1e2eee6dc98", "ip": "10.100.100.1", "oid": "1.3.6.1.4.1.25623.1.0.108031", "location": "3389/tcp", "detail": "'Vulnerable' cipher suites accepted by this service via the TLSv1.0 protocol:\n\nTLS_RSA_WITH_3DES_EDE_CBC_SHA (SWEET32)\n\n'Vulnerable' cipher suites accepted by this service via the TLSv1.1 protocol:\n\nTLS_RSA_WITH_3DES_EDE_CBC_SHA (SWEET32)\n\n'Vulnerable' cipher suites accepted by this service via the TLSv1.2 protocol:\n\nTLS_RSA_WITH_3DES_EDE_CBC_SHA (SWEET32)\n\n\n", "createdAt": "2022-11-27 09:22:08", "updatedAt": "", "plugin": { "id": 0, "createdAt": "", "updatedAt": "", "oid": "", "nameCN": "DES和Triple DES密码算法信息泄露漏洞", "descCN": "", "adviceCN": "", "family": "", "cves": "CVE-2016-2183, CVE-2016-6329", "bids": "", "cnnvd": "", "cnvd": "", "cncve": "", "ms": "", "cvss": 0, "level": 3, "levelStr": "中危", "publicDate": "", "danger": false }, "affectIps": "", "affectIpCount": 0, "statusStr": "待处理", "status": 1 } ], "count": 62//实际总结果数,分页拉取时根据这个判断是否结束 }