Tenable.sc 5.13.0 Release Notes (2019-12-30)

This release is end-of-life (EOL). Upgrade to a supported version. For information about EOL dates and policies for Tenable products, see the Tenable Software Release Lifecycle Matrix and Policy.

Note: Tenable recommends upgrading to the patch for this release, Tenable.sc Patch 202103.1, which includes a fix for a potential vulnerability. For more information, see the Tenable Product Security Advisory.

If you are running version or later, you can upgrade directly to version 5.13.0. If you are running a version earlier than, upgrade to version before upgrading to version 5.13.0.

Tenable recommends performing a backup before upgrading Tenable.sc. For more information, see Perform a Backup in the Tenable.sc User Guide.

Note: If your upgrade path skips versions of Tenable.sc (e.g., upgrading from to 5.13.0), Tenable recommends reviewing the release notes for all skipped versions. You may need to update your configurations because of features and functionality added in skipped versions.

This release addresses multiple third-party vulnerabilities. For more information, see the Security Advisory.

You can download the update files from the Tenable.sc Downloads page.

New Features

Lumin Synchronization

You can now send Tenable.sc data to Tenable Lumin for analysis and reporting. Tenable Lumin is a cloud product (additional purchase required) that can quickly and accurately assess your Cyber Exposure risk and compare your health and remediation performance to other Tenable customers in your Salesforce industry and the larger population.

Note: When data is sent from Tenable.sc to Tenable Lumin, it may take 24 to 48 hours for the data to be completely processed.

For more information, see Lumin Synchronization in the Tenable.sc User Guide.

API Key Authentication

Admin users can now authorize individual users to access Tenable.sc through individual API keys as an authentication method.

For more information, see API Key Authentication in the Tenable.sc User Guide.

SSL Certificate Passphrase Protection

You can now add passphrase protection when using SSL certificates to connect with Nessus, NNM, or Industrial Security scanners.

For more information, see Nessus Scanners, NNM Instance Settings, or Industrial Security Instance Settings in the Tenable.sc User Guide.

Deprecated Features

With this release, Tenable.sc has upgraded OpenSSL to 1.1.1. Once upgraded, FIPS compliance is no longer supported in Tenable.sc.

Included Package Upgrades

  • Apache 2.4.41
  • SimpleSAML 1.17.7
  • OpenSSL 1.1.1d
  • OpenLDAP 2.4.48

Bug Fixes

Bug Fix Defect ID
Resolved an issue where scans hung when run with IP Randomization enabled. 00901086, 00899516, 00910662, 00893442, 00838099
Resolved an issue where the administrator's license dashboard component did not properly display the expiration date for licenses that do not expire. 00893436
Resolved an issue where reports generated SIGSEGV errors following Tenable.sc 5.12.0. 00902883, 00894719
Resolved an issue where scan chunks would be lost if the scanner they were on crashed or was otherwise unreachable during the scan. 00882613
Resolved issue where attempting to use empty data from session file in cases where action is not needed caused a PHP warning. 00888358
Resolved issue where session without stored username caused a PHP warning from a debug statement. 00888350
Resolved and issue where LCE clients could not be accessed in Tenable.sc. 00870827
Prevented multiples of the same username on a Tenable.sc instance. 00869817
Resolved an issue where error messages were not being properly displayed when uploading custom plugins. 00834254
Resolved an issue where long DNS search filters were not bounded by the text box. 00848504
Resolved an issue rendering large numbers on ARCs. 00844447
Resolved an issue where IPv6 proxies in Tenable.sc would not resolve properly for downloading feed updates. 00818798
Allowed users to delete all dashboards. 00764302
Fixed an issue where the error handling for scanning would crash in certain circumstances. 00725607
Resolved an issue where users responsible for an asset were not properly disassociated from it when the asset was deleted. 00694951
Resolved an issue where the system information tab was not displaying OS information correctly. 00712966
Resolved errors with ASR Reports. 00711338
Resolved an issue with the Dashboard Viewport size. 00710336
Resolved issues with displaying notifications. 00675679
Prevented endless querying in System Logs. 00609692
Resolved issue saving the Vulnerability Mitigated filter. 00598571

API Changelog

For more information about the API changes for this release, see the Tenable.sc API Changelog.

Filenames and MD5 Checksums

Filenames and MD5 checksums are located on the Tenable.sc Downloads page.

Tenable Integrated Product Compatibility

The following table lists the Tenable product versions tested with Tenable.sc 5.13.0:

Product Tested Version

8.5.1 and later

Log Correlation Engine 5.1.1 and later
Nessus Network Monitor 5.9.0 and later
Industrial Security 1.4.0 and later
Tenable.ot 3.4.9 and later