TOC & Recently Viewed

Recently Viewed Topics

Vulnerabilities By Plugin in the Classic Interface

The By Plugin tab is the default landing page for Tenable.io. This tab contains charts that display vulnerabilities detected across all scanned assets based on the applied filter. To filter the Vulnerabilities by Plugin page, see Filter the Vulnerabilities or Assets Workbench in the Classic Interface.

Vulnerabilities by Plugin page

Charts

The following table contains a description of each chart on the By Plugin tab.

Tip: All charts on the Vulnerabilities by Plugin page display New, Active, and Resurfaced vulnerability data. However, the counts or data displayed on each chart may differ for other reasons. For example, the counts in the Current Vulnerabilities chart represent all detected vulnerabilities on your network, but the counts in the Vulnerability Priority Rating (VPR) chart represent only the vulnerabilities with an calculated VPR.

Name

Description

Current Vulnerabilities

Displays the number of detected vulnerabilities, organized by severity category: CRITICAL, HIGH, MEDIUM, or LOW. For more information, see Severity vs. VPR.

Click a tile to view a list of vulnerabilities, filtered by the severity category you selected.

Vulnerabilities Over Time

Displays the number of vulnerabilities detected per day.

Each line represents a count of the vulnerabilities in each severity category. Each data point represents all of the vulnerabilities with that severity category discovered in one day.

Click the Vulnerability Trending text to view the Vulnerability Trending widget in the new Tenable.io interface, as described in Vulnerability Management Overview.

Vulnerability Priority Rating (VPR)

Displays the number of vulnerabilities present on your network that have a calculated VPR, organized by VPR range. For more information, see Severity vs. VPR.

Click a tile to view a list of vulnerabilities, filtered by the VPR category you selected.

Exploit Available

Displays the number of detected vulnerabilities that have publicly available exploits.

Click the chart to view a list of vulnerabilities, filtered to show vulnerabilities with publicly available exploits.

Published Over 30 Days Ago

Displays the number of detected vulnerabilities that were published more than 30 days ago.

Click the chart to view a list of vulnerabilities, filtered to show vulnerabilities published more than 30 days ago.

Discovered Using Credentials

Displays the number of vulnerabilities that were detected using system credentialed checks.

Click the chart to view a list of vulnerabilities, filtered to show vulnerabilities that were detected using system credentialed checks.

Published Solutions Available

Displays the number of detected vulnerabilities that have remediation instructions available.

Click the chart to view a list of vulnerabilities, filtered to show vulnerabilities that have a published solution.

Plugin List

The following table contains a description of each element in the list of plugins used on the By Plugin tab. Click a row to view the plugin details, as described in Plugin Details in the Classic Interface.

Element

Description

Count

Displays the number of vulnerable assets based on the discoveries made by the listed plugin. The vulnerable assets appear on the plugin's detail page.

Family

Displays the name of the plugin family to which the listed plugin belongs.

Name

Displays the name of the plugin used to detect a vulnerability. A plugin name will appear only once in the list, even if it was used to discover multiple vulnerabilities.

Severity

Displays a colored dot that indicates the severity level of the vulnerabilities detected by the plugin. The severity also appears on the plugin's detail page.

State

Displays a badge that shows the status of the vulnerability. For more information, see Vulnerability States in the Classic Interface.

Total Count

Displays the total number of times a single plugin was used to detect a vulnerability within the selected time span.

E.g., if 10 assets are scanned and the same plugin is used to detect the same vulnerability on each asset, the Total Count number is 10.

Total Plugins

Displays the total number of individual plugins used to detect vulnerabilities within the selected time span.

E.g., if 20 assets are scanned and the same plugin is used to detect the same vulnerability on each asset, the Total Plugins number is 1.

VPR Displays the highest VPR calculated for any of the vulnerabilities associated with the plugin.

Copyright © 2019 Tenable, Inc. All rights reserved. Tenable, Tenable.io, Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.. Tenable.sc, Lumin, Assure, and the Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.