Nessus 10.3.2 Release Notes - 2022-11-02

Security Updates

The following are security updates included in Nessus 10.3.2:

  • Updated OpenSSL to 3.0.7 to address two high-severity security vulnerabilities.

  • Updated the libexpat library to 2.5.0 to address a security vulnerability.

For more information, see the Tenable Product Security Advisory.

Upgrade Notes

  • If you are upgrading to Nessus Expert from a previous version of Nessus, you must upgrade Nessus to 10.3 prior to performing the Expert upgrade.

  • Due to the dynamic plugin compilation update, Nessus customers who have custom plugins could experience compilation failures if their plugins do not adhere to the updated standards outlined in the NASL Library Optimization guide. We recommend that customers with custom plugins review this guide and make any necessary updates before updating to Nessus 10.0.x.

  • You can upgrade to the latest version of Nessus from any previously supported version.
  • If your upgrade path skips versions of Nessus, Tenable recommends reviewing the release notes for all skipped versions to learn about new features and bug fixes.
  • If you want your scanners to automatically update to the newest version before the GA date, set your Nessus Update Plan to Opt in to Early Access releases.
  • If you want to manually update your scanners to the latest version before the GA date, disable automatic updates so the scanner does not automatically downgrade to the previous version.
  • For Nessus 8.8.0 and later running on Windows, you must install Visual C++ Redistributable for Visual Studio 2015 on the host operating system. The following Windows versions require a minimum Service Pack to be installed:

    • Windows 7 SP1
    • Windows Server 2008 SP2
    • Windows Server 2008 R2 SP1

Downgrade Notes

  • Once you upgrade to Nessus Expert, you cannot downgrade to Nessus 10.2 using the Expert license. Doing so puts the application in a nonfunctional state.