Drilling Down in Tenable Vulnerability Management

Clicking on an item, in this case, Common Browser Concerns, Chrome bar, takes you to the Findings page. Clicking on one of the items brings up a summary from the bottom of the page.

Clicking on See All Details opens the Details page. The details page provides a wealth of information, including the description, solution, asset details, and key findings on the right side of the page, as shown in the following image:

The Tenable Security Center Browser Vulnerabilities Dashboard displays actively and passively detected vulnerability information for the major web browsers: Chrome, Firefox, Internet Explorer, Safari, and Opera. An analyst can use this information to determine the browser vulnerabilities, which need to be patched and also if any browsers are being used in unauthorized places.

For each browser, a matrix displays warning indicators for detected vulnerabilities, including critical vulnerabilities, vulnerabilities known to be exploitable, vulnerabilities by product used in conjunction with the browser (such as Flash or Java), and vulnerabilities by keyword. The keywords cover the major web browser threats such as memory corruption, information disclosure, remote code execution, buffer overflows, cross-site scripting (XSS), and more.