Group Vulnerabilities
When you group vulnerabilities, plugins with common attributes such as Common Platform Enumeration (CPE), service, application, and protocol nest under a single row in scan results. Grouping vulnerabilities gives you a shorter list of results, and shows your related vulnerabilities together.
When you enable groups, the number of vulnerabilities in the group appears next to the severity indicator, and the group name says (Multiple Issues).
The severity indicator for a group is based on the vulnerabilities in the group. If all the vulnerabilities in a group have the same severity, Tenable Nessus shows that severity level. If the vulnerabilities in a group have differing severities, Nessus shows the Mixed severity level.
To group vulnerabilities:
-
In the top navigation bar, click Scans.
The My Scans page appears.
-
Click on the scan for which you want to view vulnerabilities.
The scan's results page appears.
-
Do one of the following:
-
Click a specific host to view vulnerabilities found on that host.
-or-
-
Click the Vulnerabilities tab to view all vulnerabilities.
The Vulnerabilities tab appears.
-
-
In the header row of the vulnerabilities table, click
. -
Click Enable Groups.
Nessus groups similar vulnerabilities in one row.
To ungroup vulnerabilities:
-
In the header row of the vulnerabilities table, click
. -
Click Disable Groups.
Vulnerabilities appear on their own row.
To view vulnerabilities within a group:
-
In the vulnerabilities table, click the vulnerability group row.
A new vulnerabilities table appears and shows the vulnerabilities in the group.
To set group severity types to the highest severity within the group:
-
Set the advanced setting scans_vulnerability_groups_mixed to no.