# Get a list of scan's vulnerability types

Retrieve a list of vulnerability types registered in a scan.

Endpoint: GET /api/v2/scans/{scanId}/vulnerability-types
Version: 24.9.2.5
Security: ApiKeyAuth, Bearer

## Path parameters:

  - `scanId` (string, required)
    ID of the scan for which to get vulnerability types

## Response 200 fields (application/json):

  - `capec` (object)

  - `capec.id` (string)

  - `capec.title` (string)

  - `capec.url` (string)

  - `commonId` (string)

  - `cwe` (object)

  - `description` (string)

  - `engineId` (integer)

  - `hipaa` (object)

  - `hipaa.control` (string)

  - `hitrust` (object)

  - `language` (string)

  - `name` (string)

  - `nist` (object)

  - `nist.priority` (string)

  - `order` (integer)

  - `owasp` (object)

  - `owasp.index` (string)

  - `owasp2021` (object)

  - `pcidss` (object)

  - `pcidss.section` (string)

  - `recommendations` (array)

  - `references` (array)

  - `sansTop25` (object)

  - `sansTop25.rank` (integer)

  - `sarif` (string)

  - `sarifLevel` (string)

  - `severity` (string)

  - `severityRating` (number)

## Response 400 fields (application/json):

  - `message` (string)
    Example: "Something went wrong"

  - `result` (string)
    Example: "error"

  - `success` (boolean)

## Response 403 fields (application/json):

  - `message` (string)
    Example: "Something went wrong"

  - `result` (string)
    Example: "error"

  - `success` (boolean)

## Response 404 fields (application/json):

  - `message` (string)
    Example: "Something went wrong"

  - `result` (string)
    Example: "error"

  - `success` (boolean)