Руководство Разработчика для Cisco Cisco Firepower Management Center 4000
6-50
FireSIGHT System Database Access Guide
Chapter 6 Schema: Discovery Event and Network Map Tables
rna_host_third_party_vuln_bugtraq_id
rna_host_third_party_vuln Sample Query
The following query returns information about the third party vulnerabilities for host with
host_id
of
8
.
SELECT host_id, third_party_vuln_id, name, description, source, invalid
FROM rna_host_third_party_vuln
WHERE HEX(host_id) = "00000000000000000000000000000008";
rna_host_third_party_vuln_bugtraq_id
The
rna_host_third_party_vuln_bugtraq_id
table contains information on the third-party
vulnerabilities that are mapped to vulnerabilities in the Bugtraq database and also associated with hosts
in your monitored network. Note that the third-party vulnerability data in this table is imported via the
host input feature.
in your monitored network. Note that the third-party vulnerability data in this table is imported via the
host input feature.
For more information, see the following sections:
•
•
•
rna_host_third_party_vuln_bugtraq_id Fields
The following table describes the fields you can access in the
rna_host_third_party_vuln_bugtraq_id
table.
Table 6-45
rna_host_third_party_vuln_bugtraq_id Fields
Field
Description
bugtraq_id
The Bugtraq database identification number associated with the vulnerability.
description
A description of the vulnerability.
host_id
ID number of the host.
invalid
A value indicating whether the vulnerability is valid for the host:
•
0
- vulnerability is valid
•
1
- vulnerability is invalid
ip_address
Field deprecated in Version 5.2. Returns
null
for all queries.
name
The name, or title, of the vulnerability.
port
A port number, if the vulnerability is associated with a server or related application detected
on a specific port.
on a specific port.
protocol
The traffic protocol (
TCP
or
UDP
), if the vulnerability is associated with an application using
that protocol.
source
The source of the vulnerability.
third_party_vuln_id
The third-party identification number associated with the vulnerability.