Export Hosts Affected by a Solution

Required User Role: Organizational user with appropriate permissions. For more information, see User Roles.

You can export a list of hosts affected by a solution as a .csv file to share the data with others in your organization. For more information, see Solutions Analysis.

To export hosts affected by a solution:

  1. Log in to Tenable Security Center via the user interface.

  2. Click Solutions.

    The Solutions page appears.

  3. Click the row for the solution for which you want to export a list of affected hosts.

    The Solution Details page appears.

  4. In the upper-right corner, click Export as CSV.

    A confirmation window appears.

    Note: If the number of affected hosts is greater than 1,000, Tenable Security Center prompts you to type a name for the CSV report result you want to generate. After generation, you can download the report result, as described in Download a Report Result.

  5. Select or clear the check boxes to indicate which columns you want to appear in the exported file.

    Column Name Description
    Solution ID The plugin ID associated with the recommended solution.
    Solution A description for the solution.
    Tenable UUID The Tenable UUID, if applicable. A Tenable UUID uniquely identifies:
    • Agent-detected assets that may share a common IP address.
    • OT Security assets that may not have an IP address. For more information, see OT Security Instances.
    DNS The DNS name of the device, if known.
    IP Address The IP address for the device.
    OS The operating system running on the device.
    CVEs

    The number of unique CVEs associated with vulnerabilities on the affected host that are addressed by the solution.

    CVE Instances

    The total number of CVE instances associated with vulnerabilities on the affected host that are addressed by the solution.

    Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

    OS CPE The operating system common platform enumeration (CPE) name of the device.
    Repository The name of the repository that stores the device's scan data.
    MAC The MAC address of the device, if known.
    NetBIOS The NetBIOS name of the device, if known.
    Vulnerabilities

    The total number of vulnerability instances on the affected host addressed by the solution.

    Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

    Vulnerability Percentage

    The number of vulnerability instances on the affected host addressed by the solution as a percentage of total vulnerability instances.

    Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

    Score

    The sum of the weighted CVSS score across vulnerability instances on the affected host addressed by the solution.

    Note: Tenable Security Center uses either CVSSv2 or CVSSv3 to assess the severity of vulnerabilities, depending on your configuration. For more information, see Organizations.

    Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

    Risk Reduction

    The percent you would reduce your risk across all solutions and affected hosts by addressing the vulnerabilities on this affected host associated with the solution. Tenable Security Center calculates the risk reduction percentage by dividing the total CVSS score of the vulnerabilities on the affected host addressed by the solution by the total CVSS score of all of the vulnerabilities on your network.

    Note: Tenable Security Center uses either CVSSv2 or CVSSv3 to assess the severity of vulnerabilities, depending on your configuration. For more information, see Organizations.

    MS Bulletins

    The number of unique MS Bulletins associated with vulnerabilities on the affected host that are addressed by the solution.

    MS Bulletin Instances

    The total number of vulnerabilities with associated MS Bulletins on the affected host that are addressed by the solution.

    VPR The highest VPR of all vulnerabilities on the affected host that are addressed by the solution. If no VPR is available, the column is blank.
    CVSS v3 The highest CVSSv3 score of all vulnerabilities on the affected host that are addressed by the solution. If only a CVSSv2 score is available, the column is blank.
  6. Click Download.

  7. Tenable Security Center exports the list of hosts affected by the solution.