Note: Passive Vulnerability Scanner (PVS) is now known as Nessus Network Monitor (NNM).
This document describes the new features and improvements that are introduced in PVS 5.3. A PDF file of these release notes is also available here.
- Upgrades from 4.2.1, 4.4.1, 5.0.0, and 5.2.0 to 5.3.0 are supported. Installations running previous versions of PVS 4.2.1 must upgrade to at least 4.2.1 prior to upgrading to PVS 5.3. Refer to the PVS 5.3 User Guide for details on upgrading to PVS 5.3.
- PVS 5.3 is compatible with SecurityCenter 4.7.x and later.
- The HTML5 User Interface is automatically updated to version 1.8.0 via a plugin update.
Support is available for the following platforms:
- Red Hat Linux ES 5 / CentOS 5 64-bit
- Red Hat Linux ES 6 / CentOS 6 64-bit
- Red Hat Linux ES 7 / CentOS 7 64-bit
- macOS 10.9 - 10.12 64-bit
- Microsoft Windows Vista, 7, 8, Server 2008, and Server 2012 64-bit
File Names & Checksums
Improved User Experience with Network Configuration
User experience and the ease-of-use of our products is very important to us. Through user feedback of the PVS experience in SecurityCenter, we found that many users would inadvertently use PVS’s default network configuration which could exhaust the user’s product license. PVS is now more intelligent to how it suggests default network ranges, which directly addresses the license exhaustion issue. Furthermore, the PVS configuration interface now offers a friendly warning to users who change the network monitoring range to PVS instances managed by SecurityCenter.
Increased Detections in the SCADA/ICS Module
PVS continues to increase detection for ICS/SCADA protocols and devices. PVS can see configuration, status, and health checks based on Modbus network traffic. Furthermore, SCADA device identification was improved through detection of Ethernet/IP network traffic. Through DNP3 network traffic, visibility into configuration activity was added. And lastly, our library of detections has increased its coverage to Rockwell Automation/Allen-Bradley ControlLogix Controller and Module.
Enhanced OS Detection
A key feature to PVS is the added visibility it gives users into their network. This involves both discovery and identification. PVS 5.3 has greatly improved the quality and performance of operating system detection. This will help give PVS users greater detail into the distribution of different operating systems, and their versions, on the network.
Visibility into VXLANs
Virtual Extensible LAN (VXLAN) is a network virtualization technology that addresses scalability problems in large cloud computing deployments. By direct request from our customers, we’ve added added visibility into VXLAN traffic to the list of PVS capabilities. This continues the theme of PVS empowering customers to gain visibility to all parts of their network, no matter what technology is being used.
Improved PVS 10G performance
The performance of PVS in high performance mode has been improved to be able to process traffic on 10Gbps networks.
The OpenSSL version has been updated to 1.0.2k.