View Host Details

Required User Role: Organizational user with appropriate permissions. For more information, see User Roles.

You can drill into analysis views to view details for a specific host on your network.

To view host details from the Vulnerabilities page:

  1. Log in to Tenable Security Center via the user interface.

  2. Click Analysis > Vulnerabilities.

    The Vulnerabilities page appears.

  3. In the drop-down box, click Vulnerability List.

    The Vulnerability List tool appears.

  4. In the IP Address column, click the IP address link to view host details for a specific vulnerability instance.

    Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

    The host details panel appears.

    Section Actions
    System Information

    View information about the host system.

    • IP Address — The host's IP address, if available.

    • UUID — The host's UUID, if available.

    • NetBIOS Name — The host's NetBIOS name, if available.

    • DNS Name — The host's DNS name, if available.

    • MAC Address — The host's MAC address, if available.

    • OS — The operating system running on the host, if available.

    • CPE — The host's application common platform enumeration (CPE).

    • Score — The cumulative score for all vulnerability instances on the host. For more information about vulnerability scoring, see CVSS vs. VPR.

      Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

    • Repository — The repository that contains vulnerability data associated with the host.

    • Last Scan — The date and time Tenable Security Center last scanned the host.
    • Passive Data — Indicates whether a passive scan detected the vulnerability.

    • Compliance Data — Indicates whether the scan that detected the vulnerability included compliance plugins.

    Vulnerabilities View the number of vulnerabilities on the host, organized by severity category. For more information, see CVSS vs. VPR.
    Links
    • View SANS and ARIN links for the host. If configured, this section also displays custom resource links.

    • Click a resource link to view details for the current IP address/agent IDs. For example, if the current IP address was a publicly registered address, click the ARIN link to view the registration information for that address.

    Assets View the asset lists containing the asset. For more information, see Assets.

To view host details from the Host Assets page:

  1. Log in to Tenable Security Center via the user interface.

  2. Click Assets > Host Assets.

    The Host Assets page appears.

  3. Click the row for the host.

    The Host Asset Details page appears.

    Section Action
    Host Information

    View general information about the host.

    • Name — The name of the host.
    • System Type — The host's device type, as determined by plugin 54615.

    • Operating System — The operating system running on the host, if available.

    • IP Addresses — The host's IP address, if available.

    • MAC Addresses — The host's MAC address, if available.

    • Asset ID — The ID of the host.

    • Repository — The repository that contains vulnerability data associated with the host.

    Asset Exposure Score (Requires Tenable Security Center+ license) View the host's AES. For more information, see Asset Exposure Score in the Tenable Vulnerability Management User Guide.
    Asset Criticality Rating

    (Requires Tenable Security Center+ license) View the host's ACR and details about modifications to the ACR.

    • Overwrite Reasoning — The justification for overwriting the host's ACR.

    • Notes — Notes associated with overwriting the host's ACR.

    • Overwritten By — The user that overwrote the host's ACR.

    • ACR By Key Drivers — The key drivers used to calculate the host's ACR.

    For more information, see Asset Criticality Rating and ACR Key Drivers in the Tenable Vulnerability Management User Guide.

    To edit the host's ACR, see Edit an ACR Manually.

    Scan Information

    View scan information related to the host.

    • First Seen — The date and time Tenable Security Center first detected the host on your network.

    • Last Seen — The date and time last Tenable Security Center detected the host on your network.

    • Source — The type of scan that discovered the host on your network: Tenable Nessus Scan, Tenable Nessus Network Monitor, Log Correlation Engine, or Agent Scan.

    Findings tab
    Installed Software tab

    View the software packages installed on the host, if available.

    Customize the table, as described in Interact with a Customizable Table.