Cisco Cisco Firepower Management Center 2000 Entwickleranleitung
6-47
FireSIGHT System Database Access Guide
Chapter 6 Schema: Discovery Event and Network Map Tables
rna_host_service_vulns
rna_host_service_subtype Sample Query
The following query returns all detected sub-server records for the host with
host_id
of
8
.
SELECT host_id, service_name, version, sub_service_name, sub_service_version,
sub_service_vendor
FROM rna_host_service_subtype
WHERE HEX(host_id) = "00000000000000000000000000000008";
rna_host_service_vulns
The
rna_host_service_vulns
table contains information on the vulnerabilities mapped to the servers
detected on the hosts in your monitored network.
For more information, see the following sections:
•
•
•
rna_host_service_vulns Fields
The following table describes the fields you can access in the
rna_host_service_vulns
table.
Table 6-41
rna_host_service_vulns Fields
Field
Description
application_id
An internal identification number for the application protocol running on the host.
application_name
The application protocol name that appears in the user interface.
host_id
ID number of the host.
invalid
A value indicating whether the vulnerability is valid for the host running the application
protocol:
protocol:
•
0
- vulnerability is valid
•
1
- vulnerability is invalid
ip_address
Field deprecated in Version 5.2. Returns
null
for all queries.
port
The port used by the server.
protocol
The traffic protocol:
TCP
or
UDP
.
rna_vuln_id
An internal identification number for the vulnerability.
service_name
Field deprecated in Version 5.0. Returns
null
for all queries.
vendor
The vendor of the server detected on the host.
version
The version of the server detected on the host.