# Retrieve TOEs by CVE ID
source: https://developer.mastercard.com/riskrecon-api/documentation/use-cases/risk-assessment/toe-by-cve-id/index.md

Each of the findings that RiskRecon scans discover are mapped to [CVEs](https://developer.mastercard.com/riskrecon-api/documentation/glossary/index.md#cve). Searching by the CVE ID of a vulnerability, you can retrieve a list of TOEs across your portfolio to track vendor systems affected by the vulnerability.

The following endpoint is available in the [TOE API](https://developer.mastercard.com/riskrecon-api/documentation/getting-started/index.md#target-of-evaluation) to help you to retrieve companies and their TOE IDs by a valid CVE ID:

|    API    |     Endpoint      |                                                                            Use Case                                                                             |
|-----------|-------------------|-----------------------------------------------------------------------------------------------------------------------------------------------------------------|
| `TOE API` | `GET TOES By CVE` | [Retrieve TOEs by CVE ID](https://developer.mastercard.com/riskrecon-api/documentation/use-cases/risk-assessment/toe-by-cve-id/retrve-toes-by-cve-ids/index.md) |