Vulnerability States
Tenable assigns a vulnerability state to all vulnerabilities detected on your network. You can track and filter by vulnerability state to see the detection, resolution, and reappearance of vulnerabilities over time.
Note: This feature is currently not available in Tenable Web App Scanning FedRAMP Moderate.
Note: If you filter vulnerabilities using the Active state, Tenable Web App Scanning also returns vulnerabilities in the New state. For filtering purposes, New is a sub-category of Active.
|
Vulnerability State |
Visibility |
Description |
|---|---|---|
|
New |
Visible in dashboards |
On the Explore page, New indicates that Tenable Web App Scanning detected the vulnerability one time. On the vulnerability assets and findings tabs, New indicates that Tenable Web App Scanning detected the vulnerability one time or multiple times up to 14 days after the original detection. |
|
Active |
Visible in dashboards |
On the Explore page, Active indicates that Tenable Web App Scanning detected the vulnerability more than one time. On the vulnerability assets and findings tabs, Active indicates that Tenable Web App Scanning detected the vulnerability more than one time, and that the first detection occurred more than 14 days ago. |
|
Fixed |
Hidden in dashboards, but visible with filters |
The vulnerability was present on a host, but is no longer present. |
|
Resurfaced |
Visible in dashboards |
The vulnerability was previously marked as fixed on a host, but Tenable Web App Scanning detected it again. When a vulnerability is Resurfaced, it remains in this state until:
|