Tenable Cloud Security 2.5.5 Release Notes (2022-11-07)

Important: Tenable has announced the End of Life for Legacy Tenable Cloud Security. You can continue to access the application and receive support through September 30, 2024. Tenable recommends that you move to the current version of Cloud Security immediately. For more details, see the End of Life bulletin.

New Regions for Agentless Assessment

The following AWS regions are now available for Agentless scans:

eu-west-1
eu-west-3 (to be scanned from eu-central-1)
us-west-1 (to be scanned from the us-west-2)

Cloud Scan Support

Tenable Cloud Security now supports cloud scan for the following resources:

aws_ecr_repository
aws_ecr_repository_policy
aws_ecrpublic_repository_policy
aws_iam_account_password_policy
aws_accessanalyzer_analyzer
aws_rds_cluster_instance
aws_s3_bucket_policy
aws_securityhub_account
aws_CloudTrail
aws_CloudWatch_log_metric

User Interface Enhancements

Delete Scheduled Scan — You can now delete scheduled scan configuration for a scan profile from the Manage scan profiles page.
The tool tips for the cloud scan statuses are now consistent.
The Findings > Vulnerabilities page has the following changes:
- The VPR Score column is now a floating point number.
- The Plugin family column is now optional.

Bug Fixes

Bug Fix
Fixed an issue with IaC scan reporting the "Ensure automated backups are enabled for AWS RDS instances" policy violation even though a value for the backup_retention_period parameter is defined.
Fixed an issue with creating a custom policy.
Fixed an issue with resources not getting assessed with the applicable policy.
Fixed an issue with incorrect policy status and benchmark displayed in the compliance report.