Nessus 8.15.3 Release Notes - 2022-02-08

Changed Functionality and Performance Enhancements

The following are additional enhancements included in Nessus 8.15.3:

  • Updated Nessus with the latest version of Snappy 1.1 (a compression agent).

  • Updated Nessus with the latest version libxml2 2.9.11 (an XML parsing utility).

Security Updates

The following are security updates included in Nessus 8.15.3:

  • Fixed a vulnerability related to local privilege escalation in nessusd.exe v18.12.1.20039 (a debugging tool).

  • Updated the Nessus Expat library to version 2.4.4 to address security vulnerabilities identified in previous Expat versions.

    For more information, see the Tenable Product Security Advisory.

  • Secured underscore.js (a Javascript library) against arbitrary code injections.

Upgrade Notes

  • You can upgrade to the latest version of Nessus from any previously supported version.
  • If your upgrade path skips versions of Nessus, Tenable recommends reviewing the release notes for all skipped versions to learn about new features and bug fixes.
  • If you upgrade to this version of Nessus and downgrade later on, run the following command to ensure support for Internet Explorer: nessuscli fix --set ssl_cipher_list=compatible.
  • If you want your scanners to automatically update to the newest version prior to the GA date, set your Nessus Update Plan to Opt in to Early Access releases.
  • If you want to manually update your scanners to the latest version prior to the GA date, disable automatic updates so the scanner does not automatically downgrade to the previous version.

  • For Nessus 8.8.0 and later running on Windows, you must install Visual C++ Redistributable for Visual Studio 2015 on the host operating system. The following Windows versions require a minimum Service Pack to be installed:

    • Windows 7 SP1
    • Windows Server 2008 SP2
    • Windows Server 2008 R2 SP1