Vulnerability States

Tenable assigns a state to vulnerabilities detected on your network. You can track and filter by vulnerability state to see the detection, resolution, and reappearance of vulnerabilities over time. To filter for vulnerabilities by their state, use the Findings workbench.

Vulnerability State

Description

New

Indicates that Tenable Vulnerability Management detected the vulnerability once.

Active

Indicates that Tenable Vulnerability Management detected the vulnerability more than once.

Note: When you filter for Active vulnerabilities, Tenable Vulnerability Management also returns New vulnerabilities. For filtering purposes, New is a subcategory of Active.

Fixed

Indicates that Tenable Vulnerability Management detected the vulnerability on a host, but no longer detects it.

Note: To view Fixed vulnerabilities by date range, use the Last Fixed filter.

Resurfaced

Indicates that Tenable Vulnerability Management previously marked the vulnerability as Fixed, but has detected it again. When a vulnerability is Resurfaced, it remains in this state until a scan identifies the vulnerability as remediated. Then, the vulnerability returns to Fixed.

Note: The API uses different terms for vulnerability states than the user interface. In the API, the new and active states are both labeled as open. The resurfaced state is labeled as reopened. The fixed state is the same.