Tenable Nessus Network Monitor 2024 Release Notes

The following are changed functionality and performance enhancements included in Tenable Nessus Network Monitor 6.5.0:

• Updated the ACAS Classification field to not allow special characters that could be used in malicious scripting code.

  For more information, see Tenable Nessus Network Monitor Settings Section in the Tenable Nessus Network Monitor User Guide.

• Tenable Nessus Network Monitor High Performance Mode now supports Red Hat Linux 9.4.

• Replaced the Windows wmic command in the backend.

• Tenable now collects telemetry data from Tenable Nessus Network Monitor deployments.

For more information about the features and functionality supported in this release, see theTenable Nessus Network Monitor 6.5.x User Guide and the Tenable Nessus Network Monitor Deployment Guide.

The following are security updates included in Tenable Nessus Network Monitor 6.5.0:

• Support for expat-2.6.3

• Support for c-ares 1.33.1

• Support for curl 8.10.0

• Support for libxml2/2.13.1

• Upgraded to use libxslt/1.1.41

• Support for OpenSSL 3.0.15

Tenable Nessus Network Monitor 6.5.0 includes the following bug fixes:

• Fixed an issue that allowed Tenable Nessus Network Monitor to download corrupt plugin and tar files.

• Fixed an RBAC issue that allowed standard users to access administrator features.

• Fixed an issue where users could select more than the maximum number of worker cores in High Performance Mode.

Support is available for the following platforms:

• Red Hat Linux ES 7 / CentOS 7 (RH 7.0 through 7.9) 64-bit

• Red Hat Linux ES 8 / CentOS 8 (RH 8.2 through 8.9) 64-bit

  Note: This RPM is also supported in Oracle Linux 8 in Red Hat Compatible Kernel (RHCK) mode.

• Red Hat Linux ES 9 (9.0 through 9.4) 64-bit

  Note: For all versions of Red Hat Linux ES and CentOS, Tenable Nessus Network Monitor requires that you have systemd and firewalld on your system.

• Microsoft Windows 10, Server 2012, Server 2016, Server 2019, and Server 2022 (all 64-bit)

  Note: Tenable Nessus Network Monitor requires Microsoft Visual C++ Redistributable for Visual Studio 2015, 2017 and 2019. You must download the specific package vc_redist.x64.exe from the Microsoft downloads site.

Tenable Nessus Network Monitor 6.4.1 includes the following bug fixes:

• Fixed an issue where ACAS Classification banners did not appear in Tenable Nessus Network Monitor 6.4.0 due to a vulnerability fix for user-defined options. Tenable Nessus Network Monitor 6.4.0 and later versions do not show user defined options in the Tenable Nessus Network Monitor UI to prevent a malicious user from injecting scripting code into the Tenable Nessus Network Monitor web browser application.

• Fixed an issue where running Tenable Nessus Network Monitor from the command line on a new Windows machine would display a wpcap.dll error.

Support is available for the following platforms:

• RH7/CentOS7, version 7.9 (64-bit)

• RH8/CentOS8, versions 8.2-8.9 (64-bit)

  Note: You can run Tenable Nessus Network Monitor in PCAP mode in Oracle Linux 8 in Red Hat Compatible Kernel (RHCK) mode.

• RH9, version 9.0-9.3 (64-bit)

  Note: High Performance Mode is not available for Tenable Nessus Network Monitor 6.4.x in RH 9.0 because Red Hat does not support the igb_uio Linux driver. This driver will be replaced by the VFIO Linux driver in a future release.

• Microsoft Windows 10 and Windows Server 2012/2016/2019/2022 (all 64-bit)

The following are changed functionality and performance enhancements included in Tenable Nessus Network Monitor 6.4.0:

• Tenable Nessus Network Monitor on Windows now uses Npcap 1.72 instead of WinPcap.

For more information about the features and functionality supported in this release, see theTenable Nessus Network Monitor 6.4.x User Guide and the Tenable Nessus Network Monitor Deployment Guide.

The following are security updates included in Tenable Nessus Network Monitor 6.4.0:

• Support for OpenSSL 3.0.13

• Support for libxslt 1.1.39

• Support for xmlsec 1.3.2

• Support for zlib 1.3.1

• Support for libxml2 2.12.5

• Support for Hyperscan 5.4.2

• Support for curl 8.6.0

• Support for expat 2.6.0

• Support for c-ares 1.28.0

Tenable Nessus Network Monitor 6.4.0 includes the following bug fix:

• Tenable Nessus Network Monitor enables processing ERSPAN Type II traffic by default.

  Tip: If you have ERSPAN Type II traffic in your feed and you upgrade to Tenable Nessus Network Monitor 6.4.0, Tenable recommends you remove all previous results and allow Tenable Nessus Network Monitor to rebuild its database.

Support is available for the following platforms:

• Red Hat Linux ES 7 / CentOS 7 (RH 7.0 through 7.9) 64-bit

• Red Hat Linux ES 8 / CentOS 8 (RH 8.0 through 8.7) 64-bit

• Red Hat Linux ES 9 (9.0 through 9.3) 64-bit

  Note: For all versions of Red Hat Linux ES and CentOS, Tenable Nessus Network Monitor requires that you have systemd and firewalld on your system.

• Microsoft Windows 10, Server 2012, Server 2016, and Server 2019 (all 64-bit)

  Note: Tenable Nessus Network Monitor requires Microsoft Visual C++ Redistributable for Visual Studio 2015, 2017 and 2019. You must download the specific package vc_redist.x64.exe from the Microsoft downloads site.