Nessus 8.15.3 Release Notes - 2022-02-08
Changed Functionality and Performance Enhancements
The following are additional enhancements included in Nessus 8.15.3:
-
Updated Nessus with the latest version of Snappy 1.1 (a compression agent).
-
Updated Nessus with the latest version libxml2 2.9.11 (an XML parsing utility).
Security Updates
The following are security updates included in Nessus 8.15.3:
-
Fixed a vulnerability related to local privilege escalation in nessusd.exe v18.12.1.20039 (a debugging tool).
-
Updated the Nessus Expat library to version 2.4.4 to address security vulnerabilities identified in previous Expat versions.
For more information, see the Tenable Product Security Advisory.
-
Secured underscore.js (a Javascript library) against arbitrary code injections.
Upgrade Notes
- You can upgrade to the latest version of Nessus from any previously supported version.
- If your upgrade path skips versions of Nessus, Tenable recommends reviewing the release notes for all skipped versions to learn about new features and bug fixes.
- If you upgrade to this version of Nessus and downgrade later on, run the following command to ensure support for Internet Explorer: nessuscli fix --set ssl_cipher_list=compatible.
- If you want your scanners to automatically update to the newest version prior to the GA date, set your Nessus Update Plan to Opt in to Early Access releases.
- If you want to manually update your scanners to the latest version prior to the GA date, disable automatic updates so the scanner does not automatically downgrade to the previous version.
-
For Nessus 8.8.0 and later running on Windows, you must install Visual C++ Redistributable for Visual Studio 2015 on the host operating system. The following Windows versions require a minimum Service Pack to be installed:
- Windows 7 SP1
- Windows Server 2008 SP2
- Windows Server 2008 R2 SP1