Vulnerabilities / Findings

This topic describes the differences between vulnerabilities in Tenable Vulnerability Management and Tenable Security Center.

Tenable Vulnerability Management

A finding is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

In Tenable Vulnerability Management, you can view and manage the following types of findings:

  • Vulnerabilities

  • Cloud Misconfigurations

  • Host Audits

  • Web Application Findings

For more information, see Findings in the Tenable Vulnerability Management User Guide.

Tenable Security Center

In Tenable Security Center, vulnerabilities are categorized as Cumulative or Mitigated and stored in two databases. The cumulative database contains currently vulnerable vulnerabilities, including recast, accepted, or previously mitigated vulnerabilities. The mitigated database contains vulnerabilities that Tenable Security Center determines are not vulnerable, based on the scan definition, the results of the scan, the current state of the cumulative view, and authentication information.

For more information, see Vulnerability Analysis in the Tenable Security Center User Guide.