Note: Tenable recommends upgrading to the patch for this release, Tenable.sc Patch 202103.1, which includes a fix for a potential vulnerability. For more information, see the Tenable Product Security Advisory.
If you are running version 184.108.40.206 or later, you can upgrade directly to version 5.13.0. If you are running a version earlier than 220.127.116.11, upgrade to version 18.104.22.168 before upgrading to version 5.13.0.
Tenable recommends performing a backup before upgrading Tenable.sc. For more information, see Perform a Backup in the Tenable.sc User Guide.
Note: If your upgrade path skips versions of Tenable.sc (e.g., upgrading from 22.214.171.124 to 5.13.0), Tenable recommends reviewing the release notes for all skipped versions. You may need to update your configurations because of features and functionality added in skipped versions.
This release addresses multiple third-party vulnerabilities. For more information, see the Security Advisory.
You can download the update files from the Tenable.sc Downloads page.
You can now send Tenable.sc data to Tenable Lumin for analysis and reporting. Tenable Lumin is a cloud product (additional purchase required) that can quickly and accurately assess your Cyber Exposure risk and compare your health and remediation performance to other Tenable customers in your Salesforce industry and the larger population.
Note: When data is sent from Tenable.sc to Tenable Lumin, it may take 24 to 48 hours for the data to be completely processed.
For more information, see Lumin Synchronization in the Tenable.sc User Guide.
API Key Authentication
Admin users can now authorize individual users to access Tenable.sc through individual API keys as an authentication method.
For more information, see API Key Authentication in the Tenable.sc User Guide.
SSL Certificate Passphrase Protection
You can now add passphrase protection when using SSL certificates to connect with Nessus, NNM, or Industrial Security scanners.
With this release, Tenable.sc has upgraded OpenSSL to 1.1.1. Once upgraded, FIPS compliance is no longer supported in Tenable.sc.
Included Package Upgrades
- Apache 2.4.41
- SimpleSAML 1.17.7
- OpenSSL 1.1.1d
- OpenLDAP 2.4.48
|Bug Fix||Defect ID|
|Resolved an issue where scans hung when run with IP Randomization enabled.||00901086, 00899516, 00910662, 00893442, 00838099|
|Resolved an issue where the administrator's license dashboard component did not properly display the expiration date for licenses that do not expire.||00893436|
|Resolved an issue where reports generated SIGSEGV errors following Tenable.sc 5.12.0.||00902883, 00894719|
|Resolved an issue where scan chunks would be lost if the scanner they were on crashed or was otherwise unreachable during the scan.||00882613|
|Resolved issue where attempting to use empty data from session file in cases where action is not needed caused a PHP warning.||00888358|
|Resolved issue where session without stored username caused a PHP warning from a debug statement.||00888350|
|Resolved and issue where LCE clients could not be accessed in Tenable.sc.||00870827|
|Prevented multiples of the same username on a Tenable.sc instance.||00869817|
|Resolved an issue where error messages were not being properly displayed when uploading custom plugins.||00834254|
|Resolved an issue where long DNS search filters were not bounded by the text box.||00848504|
|Resolved an issue rendering large numbers on ARCs.||00844447|
|Resolved an issue where IPv6 proxies in Tenable.sc would not resolve properly for downloading feed updates.||00818798|
|Allowed users to delete all dashboards.||00764302|
|Fixed an issue where the error handling for scanning would crash in certain circumstances.||00725607|
|Resolved an issue where users responsible for an asset were not properly disassociated from it when the asset was deleted.||00694951|
|Resolved an issue where the system information tab was not displaying OS information correctly.||00712966|
|Resolved errors with ASR Reports.||00711338|
|Resolved an issue with the Dashboard Viewport size.||00710336|
|Resolved issues with displaying notifications.||00675679|
|Prevented endless querying in System Logs.||00609692|
|Resolved issue saving the Vulnerability Mitigated filter.||00598571|
For more information about the API changes for this release, see the Tenable.sc API Changelog.
Filenames and MD5 Checksums
Filenames and MD5 checksums are located on the Tenable.sc Downloads page.
Tenable Integrated Product Compatibility
The following table lists the Tenable product versions tested with Tenable.sc 5.13.0:
8.5.1 and later
|Log Correlation Engine||5.1.1 and later|
|Nessus Network Monitor||5.9.0 and later|
|Industrial Security||1.4.0 and later|
|Tenable.ot||3.4.9 and later|