Findings Types
The Findings page presents findings that scanners in Tenable Vulnerability Management identify, as well as findings that Tenable Vulnerability Management imports from other Tenable products. In the left navigation, choose a findings type. Then, refine results with filters in drop-downs >. Choosing a findings type does not remove your current findings filters.
Findings Types
The following table defines the findings types in the left navigation.
|
Findings Type |
Description |
|---|---|
|
Vulnerabilities |
Findings such as system misconfigurations, unpatched software, poor data encryption, and weak authorization credentials. Refine By VPR, By Severity, or By State. |
|
Host Audits |
Host audits assess workstations, services, or network devices to evaluate the configuration, hardening, and security controls applied to a target. Refine these By Result of an audit. |
| Web Application Findings |
Findings such as SQL injections, cross-site scripting, local file inclusions, security misconfigurations, and XML external entity processing. Filter By VPR, By Severity, or By State. |
Note: Host Audits do not include data from Cloud Infrastructure audits such as those in the Audit Cloud Infrastructure scan template (see Scan Templates). These audits lack sufficient host-specific details. To view the scan results for this audit, see View Scans.
Findings Type Filters
Under each findings type, use drop-downs > to apply filters that vary by type:
-
By VPR — Filter by the Vulnerability Priority Rating, which rates the risk and urgency of a vulnerability from 1 to 10.
-
By Severity — Filter by a vulnerability's severity—for example, Critical. For more information, see Vulnerability Severity Indicators.
-
By State — Filter by a vulnerability's state, which provides its detection status. For more information, see Vulnerability States.
-
By Result — Filter by audit results—for example, Passed or Failed.