Monitor Libraries
The Libraries page provides a list of all libraries that are in use by the corresponding applications. The page highlights the vulnerabilities and associated risks introduced by the use of those libraries. You can use the Search filter for the Application, Package Language, Tiers, Status, and Libraries categories. See Monitor Application Security Using .
The Libraries page includes these details:
| Field Name | Description |
|---|---|
| Library |
Libraries in the selected application. You can click on the row to view the details of the library. See View Library Details. |
| Application | The application name that uses the corresponding library. |
| Tier (Nodes) |
The application tier that is vulnerable because of its relationship to the corresponding library. Click the flow map icon ( |
| Highest Cisco Security Risk Score | The Cisco Security Risk Score provides an estimate of exploitation based on real-time events. These are the three statuses:
|
| Highest CVSS Score | This score is based on the Common Vulnerability Scoring System (CVSS) with five severities:
|
| Total Vulnerabilities |
The number of vulnerabilities based on severity:
Hover on the required color to know the severity. Click this field to sort in increasing or decreasing order based on the number of vulnerabilities. |
| Remediation | The recommended version of the library that can be used for remediation. |
| Status |
The status of the vulnerable libraries. By default, when a vulnerability is detected the value is Detected. The status value can be:
The Detected, Downgraded, and Upgraded status are auto-populated. If you have the Configure Cisco Secure Application permission, you can change the Status by selecting the required libraries and using the Set Status option. You must have the Configure permission to view and use the Set Status and Edit Note options. Click this field to sort based on the status of the vulnerable library. |