As part of Qualys "Host List Detection" API how to get Vulnerable software information?
You can't because the idea of a "vulnerable software" isn't really a construct in the Qualys VM world. Assets and hosts have vulnerabilities, not software.
you probably want to use the Asset Management and Tagging API:
Retrieving data ...