View Vulnerabilities by Plugin

Required User Role: Organizational user with appropriate permissions. For more information, see User Roles.

You can drill into analysis views, filtering by plugin, to view vulnerabilities and vulnerability instances related to that plugin.

To view vulnerabilities and vulnerability instances associated with a plugin:

  1. Log in to Tenable.sc via the user interface.

  2. Click Analysis > Vulnerabilities.

    The Vulnerability Analysis page appears.

  3. In the drop-down box, click Vulnerability Summary.

    The Vulnerability Summary tool appears.

    In this tool, you can:

    Section Actions
    Options menu
    Table header

    Click sort descending or sort ascending next to a column name to sort the table by that column. Not all columns support sorting.

    Filters side bar Apply a filter, as described in Apply a Filter and Vulnerability Analysis Filter Components.
    Plugin row
    • Click the Plugin ID info to view the plugin details for the plugin, as described in View Plugin Details.
    • Click the row to view the vulnerability details in the Vulnerability List tool.
    Plugin row actions menu
  4. Click the row for the plugin where you want to view vulnerability instance details.

    The Vulnerability List tool appears, filtered by the plugin you selected.

    In this tool, you can:

    Section

    Actions
    Options menu
    Filters side bar Apply a filter, as described in Apply a Filter and Vulnerability Analysis Filter Components.
    Vulnerability row
    • Click the Plugin ID info to view the plugin details associated with the vulnerability, as described in View Plugin Details.
    • Click the IP Address info to view the host details for the vulnerability, as described in View Host Details.
    • Click the row to view the vulnerability instance details in the Vulnerability Detail List tool, as described in View Vulnerability Instance Details.

      Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.