Host Audits Findings Details

This topic describes the performance of or functionality for a new feature in Tenable.io Key Enhancements. For more information, see Tenable.io Key Enhancements.

Required Tenable.io Vulnerability Management User Role: Basic, Scan Operator, Standard, Scan Manager, or Administrator

On the Findings page, you can click a host audits finding to view basic details about the finding in the preview panel. You can view more details about the finding on the Host Audit Details page.

The following tables describe the information that appears in each option:

Preview Panel

The preview panel shows the following details about the host audit findings:

Section Description
Left section
Header The name of the plugin that identified the finding during a compliance check.
Asset Information

Information about the affected asset, including:

  • Name — The name of the asset where the scan performed the compliance check.

  • Operating System — The operating system that the scan identified as installed on the asset.

  • IPV4 Address — An IPv4 address that the scan has associated with the asset.

  • System Type — The system type for the asset, determined by plugin data.

Center section
Host Audit Information

Information about the compliance check, including:

  • Audit Name — The name of the compliance check the scanner performed on the affected asset.

  • Audit File — The name of the audit file the scanner used to perform the compliance check.

  • Result — The outcome of the compliance check.

  • State — The state of the finding identified during the compliance check.

Audit Discovery

Information about the key drivers Tenable used to calculate a VPR for the vulnerability, including:

  • First Audit — The date and time when a scan first performed the compliance check on the asset.

  • Last Audit — The date and time when a scan last performed the compliance check on the asset.

Right section
Description

A brief description of the plugin that identified the finding during a compliance check.

Solution A brief summary of how you can address the compliance check findings.

Host Audits Findings Details Page

The Host Audits Findings Details page shows the following details about the host audits:

Section Description
Top section
Description

A brief description of the plugin that identified the finding during a compliance check.

Solution

A brief summary of how you can address the compliance check findings.

See Also Links to external websites that contain helpful information about the compliance check.
Audit File The name of the audit file the scanner used to perform the compliance check.
Lower section
Asset Information

Information about the affected asset, including:

  • Name — The name of the asset on which the scanner performed a compliance check.

  • Operating System — The operating system that the scan identified as installed on the affected asset.

  • IPV4 Address — The IPv4 address for the affected asset.

  • System Type — The type of system on which the affected asset runs.

Additional Information

Additional information about the affected asset, including:

  • Network — The name of the network object associated with scanners that detected the finding. The default network name is Default. For more information, see Networks.

  • MAC Address — The static Media Access Control (MAC) address for the affected asset.

  • Tenable ID —The unique identifier for the Tenable account associated with the affected asset.

  • Installed Software — Software that a scan identified on the affected asset.

Policy Value

The plugin output that appears in the finding if the affected asset is compliant with the audit policy.

Actual Value The plugin output that actually appears in the finding.

Right section

Compliance check status A descriptive icon indicating the status of the compliance check, such as Passed, Warning, or Failed.
Host Audit Information

Information about the compliance check, including:

  • Published — The date on which the vendor published a patch for the vulnerability. This field appears only if an official vendor patch has been published.

  • Plugin Name — The name of the plugin that identified the compliance check.

  • Plugin ID — The ID of the plugin that identified the compliance check.

  • Family — The compliance check family to which the audit belongs.

  • State — An indication about whether the audit finding is currently active on the affected asset. Possible states are Active, Fixed, and Resurfaced.

Audit Discovery
  • First Audit — The date and time when a scan first performed the compliance check on the asset.

  • Last Audit — The date and time when a scan last performed the compliance check on the asset.

Reference Information

A list of industry resources that provide additional information about the compliance check.