Recast Risk Rules

A list of recast rules configured in Tenable Security Center appears on the Recast Risk Rules page. Organizational users must add recast risk rules before the rules appear on this page. For more information, see Add a Recast Risk Rule.

Administrator and organizational users can manage recast risk rules. You can access information on what particular vulnerabilities or hosts have had risk levels recast, their new severity level and, if noted in the comments, the reason for the severity change. You can search for rules by Plugin ID or Repository.

You can set an expiration date for a recast risk rule. When a recast risk rule expires, the severity will reset based on the following criteria:

  • If an administrator has configured Tenable Security Center to use CVSSv3 at the organization level, and there are CVSSv3 metrics available, the severity level of the vulnerability will return to the level determined by the CVSSv3 data.

  • If an administrator has not configured Tenable Security Center to use CVSSv3, or there are no CVSSv3 metrics available, the vulnerability will retain the recast severity level. If Tenable Security Center finds the vulnerability again, the vulnerability will receive the severity level currently determined by the plugin.

To view details for a rule, click the row. To delete a rule, see Delete a Recast Risk Rule.