TOC & Recently Viewed

Recently Viewed Topics

Tenable.io Platform Release Notes - December

Important Highlights from this Release

WAS Scanner 0.13.0, 0.14.0, 0.15.0

  • 0.13.0
    • Add "Localhost Target Not Allowed" scan note when local hosts are tried to be scanned
    • Enhance "Target Unreachable" scan note with first action items to address this case
    • Increase number of DOM interactions performed by scanner on each page
    • Add URL used during login form authentication to list of URLs to be crawled
  • 0.14.0
    • New plugin 98035 - Login Form Authentication Succeeded
    • Improved detection for plugin 98112 - Cross-Site Request Forgery
  • 0.15.0
    • OWASP Top 10 2017 Support
    • Plugin 98035 "Login Form Succeeded" updated with information about session cookie created

Dashboard Analytics Export PNG

  • The Export PNG capability allows users to share dashboard data to include a high resolution image in presentations and email

Bug Fixes

  • Fixed vulnerabilities are now being filtered out of the scan results UI and exports by default
  • The asset workbench now shows the correct asset count after an advanced filter is applied
  • Assets that were incorrectly collapsed due to matching on an SSH fingerprint are now only matched and collapsed if there are corroborating identifiers
  • Fixed an issue where scans may not completely process if a single asset had a large number of vulnerabilities split across multiple scan chunks
  • WAS- Fix aborted scan due to DOM parsing errors

  • WAS - Fix aborted scans when scan is scan time limit has been reached

  • WAS - Fix invalid link for plugin 98087 WebDav detection plugin

  • WAS - Fix scan error when headers contain non-UTF8 text

  • WAS - Fix scan parsing errors on invalid SELECT HTML elements

  • WAS - Do not start plugin 98112 - Cross-Site Request Forgery detection for unauthenticated scans

  • WAS- Fix uncaught network error leading WAS scanner to stop polling platforms for new jobs

Other

  • Minimum limit for period of inactivity to automatically unlink agents has been lowered from 30 to 1 day.

 

Copyright 2017 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc.  Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc.  All other products or services are trademarks of their respective owners.