# Get Product Library Vulnerabilities Returns a list of the vulnerabilities in the libraries of a given product Endpoint: GET /api/v2.0/products/{productToken}/libraries/{libraryUuid}/vulnerabilities Version: 3.0.1 Security: bearer-key ## Query parameters: - `pageSize` (string) - `page` (string) ## Path parameters: - `productToken` (string, required) product UUID (by running Entities - Organization > Get Organization Products) or Product Token (from the Mend SCA App: tab > ). - `libraryUuid` (string, required) library UUID (get a project's library by running Library - Project > Get Project Libraries. ## Response 200 fields (application/json): - `additionalData` (object) + : The total count of data points returned in an API response. + : Defines whether the current page represents the conclusion of the API response. When “true”, this signifies you are viewing the last page of the API response. When “false”, this indicates there are further pages remaining. Example: {"totalItems":"422","isLastPage":"true"} - `supportToken` (string) Example: "1171c60d" - `retVal` (array) - `retVal.name` (string) Example: "CVE-2021-42392" - `retVal.type` (string) Enum: "CVE", "WS" - `retVal.description` (string) Example: "Security vulnerability found in plexus-utils before 3.0.24. XML injection found in XmlWriterUtil.java" - `retVal.score` (number) Example: 5 - `retVal.severity` (string) Enum: "HIGH", "MEDIUM", "LOW" - `retVal.publishDate` (string) - `retVal.modifiedDate` (string) - `retVal.vulnerabilityScoring` (array) - `retVal.vulnerabilityScoring.scoreMetadataVector` (string) Example: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" - `retVal.vulnerabilityScoring.extraData` (object) - `retVal.references` (array) - `retVal.references.value` (string) Example: "https://github.com/codehaus-plexus/plexus-utils/commit/f933e5e78dc2637e485447ed821fe14904f110de" - `retVal.references.source` (string) Example: "CERT" - `retVal.references.url` (string) Example: "https://github.com/codehaus-plexus/plexus-utils/commit/f933e5e78dc2637e485447ed821fe14904f110de" - `retVal.references.signature` (boolean) - `retVal.references.advisory` (boolean) - `retVal.references.patch` (boolean) - `retVal.effectiveInfo` (object) - `retVal.effectiveInfo.referenceCount` (integer) - `retVal.effectiveInfo.shieldValue` (integer) RED(15), YELLOW(10), GREY(8), NO_SHIELD(6), GREEN(5) - `retVal.threatAssessment` (object) - `retVal.threatAssessment.exploitCodeMaturity` (string) Enum: "UNPROVEN", "POC_CODE", "FUNCTIONAL", "HIGH", "NOT_DEFINED" - `retVal.threatAssessment.epssPercentage` (number) Example: 0.8 ## Response 400 fields (*/*): - `supportToken` (string) Example: "1171c60d" ## Response 403 fields (*/*): - `supportToken` (string) Example: "1171c60d"