The Cisco vulnerability database (VDB) is a database of known vulnerabilities to which hosts may be susceptible, as well as fingerprints for operating systems, clients, and applications. The system uses the VDB to help determine whether a particular host increases your risk of compromise.
The Cisco Talos Security Intelligence and Research Group (Talos) issues periodic updates to the VDB.
The Cisco Firepower Application Detector Reference contains the release notes and information about the application detectors supported in the VDB release. For each application listed in the reference, you can find the following information:
- Description—A brief description of the application.
- Categories—A general classification for the application that describes its most essential function. Example categories include web services provider, e-commerce, ad portal, and social networking.
- Tags—Predefined tags that provide additional information about the application. Example tags include webmail, SSL protocol, file sharing/transfer, and displays ads. An application can have zero, one, or more tags.
- Risk—The likelihood that the application is used for purposes that might be against your organisation’s security policy. The risk levels are Very High, High, Medium, Low, and Very Low.
- Business Relevance—The likelihood that the application is used within the context of your organisation’s business operations, as opposed to recreationally. The relevance levels are Very High, High, Medium, Low, and Very Low.
See the Cisco Firepower Application Detector Reference for each listed VDB Release here: Cisco Vulnerability Database Library for Firepower System.
You can request a new application detector by opening a support case.
You can also build your own app detector; for more information, see Application Detection in the Firepower Management Center Config Guide.
