View Vulnerability Instance Details

Required User Role: Organizational user with appropriate permissions. For more information, see User Roles.

You can drill into analysis views to view details for a specific instance of a vulnerability found on your network.

Tip: A vulnerability instance is a single instance of a vulnerability appearing on an asset, identified uniquely by plugin ID, port, and protocol.

To view vulnerability instance details:

  1. Log in to Tenable.sc via the user interface.

  2. Click Analysis > Vulnerabilities.

    The Vulnerabilities page appears.

  3. In the drop-down box, click Vulnerability Detail List.

    The Vulnerability Detail List tool appears.

    In this tool, you can:

    Section Actions
    Options menu
    arrows Click the arrows to view other vulnerability instances related to the plugin.
    toolbar
    Synopsis and Description View information about the plugin, vulnerability instance, and affected assets.
    Solution View the Tenable-recommended action to remediate the vulnerability.
    See Also View related links about the plugin or vulnerability.
    Discovery

    View details about when the vulnerability was discovered and last seen on your network.

    Note: The discovery date is based on when the vulnerability was first imported into Tenable.sc. For NNM, this date does not match the exact vulnerability discovery time as there is normally a lag between the time that NNM discovers a vulnerability and the import occurs.

    Note: Days are calculated based on 24-hour periods prior to the current time, not calendar days. For example, if the report run time was 1/8/2019 at 1:00 PM, using a 3-day count would include vulnerabilities starting 1/5/2019 at 1:00 PM and not from 12:00 AM.

    Host Information View details about the asset.
    Risk Information View metrics (e.g., CVSS score, VPR, etc.) about the risk associated with the vulnerability.
    Exploit Information View details about the exploit.
    Plugin Details View details about the plugin.
    VPR Key Drivers

    View the key drivers Tenable used to calculate the VPR score. For more information, see CVSS vs. VPR.

    Vulnerability Information View Common Platform Enumeration (CPE) details.
    Reference Information View related links to the CVE, BID, MSFT, CERT, and other industry materials about the vulnerability.