Manage Vulnerabilities

Required Tenable Security Center User Role: Organizational user with appropriate permissions. For more information, see User Roles.

View Cumulative or Mitigated Vulnerabilities

For general information about cumulative vulnerabilities and mitigated vulnerabilities, see Cumulative vs. Mitigated Vulnerabilities.

To switch between viewing mitigated or cumulative vulnerabilities:

Log in to Tenable Security Center Director via the user interface.
Click Analysis > Vulnerabilities.

The Vulnerabilities page appears.
In the upper-right corner, click Cumulative or Mitigated.

The page updates to display data from the mitigated or cumulative vulnerability database.

View Vulnerabilities by Host

You can drill into analysis views, filtering by host, to view vulnerabilities and vulnerability instances on a host.

To view vulnerabilities and vulnerability instances associated with a host:

Log in to Tenable Security Center Director via the user interface.
Click Analysis > Vulnerabilities.

The Vulnerabilities page appears.
In the drop-down box, click IP Summary.

The IP Summary tool appears.
Filter the tool to locate the host where you want to view vulnerability instance details, as described in Filters and Vulnerability Analysis Filter Components.
To customize the table, see Interact with a Customizable Table.

To view details of a vulnerability instance:

Click the row for the vulnerability instance for which you want to view the details.

The Vulnerability List tool appears, filtered by the vulnerability instance you selected.

In this tool, you can:

Options	Actions
Jump to Vulnerability Detail	View the Vulnerability Detail List page. This page displays the synopsis, description, solution, and the plugin output of the vulnerability.
Export	Export data as a .csv or a .pdf file, as described in Export Vulnerability Data.
Save	Save Query — Save a query, as described in Add or Save a Query. Save Asset — Save an asset, as described in Assets.
More	Open Ticket — Open a ticket, as described in Open a Ticket. Set as Default View — Set this view as your default view.
Cumulative	Switch between viewing cumulative vulnerabilities or mitigated vulnerabilities, as described in View Cumulative or Mitigated Vulnerabilities.
Mitigated	Switch between viewing cumulative vulnerabilities or mitigated vulnerabilities, as described in View Cumulative or Mitigated Vulnerabilities.
Filters side bar	Apply a filter, as described in Apply a Filter and Vulnerability Analysis Filter Components.
Vulnerability row	Click the Plugin ID to view the plugin details associated with the vulnerability, as described in View Plugin Details. Click the IP Address to view the host details for the vulnerability, as described in View Host Details. Click the row to view the vulnerability instance details in the Vulnerability Detail List tool, as described in View Vulnerability Instance Details.

To view the host details of an instance:
1. Click the IP Address link.
  
  The System Information pane appears. For more information, see View Host Details.

View Vulnerabilities by Plugin

You can drill into analysis views, filtering by plugin, to view vulnerabilities and vulnerability instances related to that plugin.

To view vulnerabilities and vulnerability instances associated with a plugin:

Log in to Tenable Security Center Director via the user interface.
Click Analysis > Vulnerabilities.

The Vulnerabilities page appears.

In the drop-down box, click Vulnerability Summary.

The Vulnerability Summary tool appears.

In this tool, you can:

Options	Actions
Jump to Vulnerability Detail	View the Vulnerability Detail List page. This page displays the synopsis, description, solution, and the plugin output of the vulnerability.
Export	Export data as a .csv or a .pdf file, as described in Export Vulnerability Data.
Save	Save Query: Save a query, as described in Add or Save a Query. Save Asset: Save an asset, as described in Assets.
More	Open Ticket: Open a ticket, as described in Open a Ticket. Set as Default View: Set this view as your default view.
Cumulative	Switch between viewing cumulative vulnerabilities or mitigated vulnerabilities, as described in View Cumulative or Mitigated Vulnerabilities.
Mitigated	Switch between viewing cumulative vulnerabilities or mitigated vulnerabilities, as described in View Cumulative or Mitigated Vulnerabilities.
Table	Customize the table, as described in Interact with a Customizable Table.
Filters side bar	Apply a filter, as described in Apply a Filter and Vulnerability Analysis Filter Components.
Plugin row	Click the Plugin ID to view the plugin details for the plugin, as described in View Plugin Details. Click the row to view the vulnerability details in the Vulnerability List tool.
Plugin row	View the DNS Summary tool or IP Summary tool for the plugin.

Click the row for the plugin where you want to view vulnerability instance details.

The Vulnerability List tool appears, filtered by the plugin you selected.

In this tool, you can:

Options	Actions
Jump to Vulnerability Detail	View the Vulnerability Detail List page. This page displays the synopsis, description, solution, and the plugin output of the vulnerability.
Export	Export data as a .csv or a .pdf file, as described in Export Vulnerability Data.
Save	Save Query — Save a query, as described in Add or Save a Query. Save Asset — Save an asset, as described in Assets.
More	Open Ticket — Open a ticket, as described in Open a Ticket. Set as Default View — Set this view as your default view.
Cumulative	Switch between viewing cumulative vulnerabilities or mitigated vulnerabilities, as described in View Cumulative or Mitigated Vulnerabilities.
Mitigated	Switch between viewing cumulative vulnerabilities or mitigated vulnerabilities, as described in View Cumulative or Mitigated Vulnerabilities.
Filters side bar	Apply a filter, as described in Apply a Filter and Vulnerability Analysis Filter Components.
Vulnerability row	Click the Plugin ID to view the plugin details associated with the vulnerability, as described in View Plugin Details. Click the IP Address to view the host details for the vulnerability, as described in View Host Details. Click the row to view the vulnerability instance details in the Vulnerability Detail List tool, as described in View Vulnerability Instance Details.

View Vulnerability Instance Details

You can drill into analysis views to view details for a specific instance of a vulnerability found on your network.

Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

To view vulnerability instance details:

Log in to Tenable Security Center Director via the user interface.
Click Analysis > Vulnerabilities.

The Vulnerabilities page appears.

In the drop-down box, click Vulnerability Detail List.

The Vulnerability Detail List tool appears.

In this tool, you can:

Section	Actions
Options menu	Export data as a .csv or a .pdf file, as described in Export Vulnerability Data. Save a query, as described in Add or Save a Query. Save an asset. Open a ticket, as described in Open a Ticket. Set this view as your default view. Switch between viewing cumulative vulnerabilities or mitigated vulnerabilities, as described in View Cumulative or Mitigated Vulnerabilities.
arrows	Click the arrows to view other vulnerability instances related to the plugin.
toolbar	Launch a remediation scan, as described in Launch a Remediation Scan. Create an accept risk rule, as described in Add an Accept Risk Rule. Create a recast risk rule, as described in Add a Recast Risk Rule.
Synopsis and Description	View information about the plugin, vulnerability instance, and affected assets.
Plugin Output	The output generated by the plugin. Note:Tenable Nessus scanners may occasionally report findings from plugin 19506 multiple times per host. Tenable Security Center Director reports all of the plugin output from a host, including different findings for the same plugin ID. These findings appear as multiple entries in the Vulnerability Detail List tool.
Solution	View the Tenable-recommended action to remediate the vulnerability.
See Also	View related links about the plugin or vulnerability.
Discovery	View details about when the vulnerability was discovered and last seen on your network.
Host Information	View details about the asset.
Risk Information	View metrics (for example, CVSS score and VPR) about the risk associated with the vulnerability.
Exploit Information	View details about the exploit.
Plugin Details	View details about the plugin.
VPR Key Drivers	View the key drivers Tenable used to calculate the VPR score. For more information, see CVSS vs. VPR.
Vulnerability Information	View Common Platform Enumeration (CPE) details.
Reference Information	View related links to the CVE, BID, MSFT, CERT, and other industry materials about the vulnerability.

Export Vulnerability Data

You can export data from the Vulnerabilities page as a .csv or a .pdf file.

To export data from the Vulnerabilities page:

Log in to Tenable Security Center Director via the user interface.
Click Analysis > Vulnerabilities.

The Vulnerabilities page appears.
In the Export drop-down box, click Export > Export as CSV or Export as PDF.

Note: If the record count (rows displayed) of any CSV export is greater than 1,000, Tenable Security Center Director prompts you for the name of the CSV report you want to generate. After generation, you can download the report from the Report Results page.
Select or clear the check boxes to indicate which columns you want to appear in the exported file.
Click Submit.

Tenable Security Center Director exports the vulnerability data.