added

Web App Scanning: OpenAPI Specification by URL (Early Access)

📘

Note

This feature is currently restricted to Tenable customers that participate in the Early Access program. To opt in to Early Access, contact your Tenable representative.

improved

Vulnerability Management: Open Port Findings in .nessus Scan Exports

On May 16, 2024, Tenable will update the .nessus scan export format to include individual open port findings. This will ensure that you can still view open port findings in Tenable Security Center if your organization integrates Tenable Vulnerability Management with Tenable Security Center.

deprecated

Vulnerability Management: Deprecation of List Vulnerabilities Parameters

Tenable has deprecated the following List vulnerabilities query parameters:

deprecated

Vulnerability Management: Deprecation of HTML Format for Scan Exports

On April 23, 2024, Tenable will begin removing the option to export scans in HTML format. Scans can still be exported in nessus, CSV, or PDF format. Tenable recommends that you update any existing integrations that your organization has before this date.

added

Vulnerability Management: Nessus Agent Info-level Reporting

A new scan setting called Info-level Reporting is now available for Nessus Agent vulnerability scan templates. The setting specifies how often an agent scan should report unchanged info-level vulnerability findings. There are several new parameters that can be used when creating or updating a scan to support this new feature.

added

Web App Scanning: Get Remediation Scan Configuration

A new endpoint has been added to the Tenable Web App Scanning API that enables users to generate a scan configuration for a remediation scan. Remediation scans can be used to validate whether remediation actions for a vulnerability has been successful. Note that this endpoint only returns a configuration that can be used to create a remediation scan. You must use the response from this endpoint as the request body for the Create scan config endpoint to create the remediation scan. For more information about remediation scans, see Launch a Remediation Scan in the Tenable Web App user guide.

deprecated

End of Life for Legacy Cloud Security

🛑

Caution

Tenable recommends that you update any existing Legacy Cloud Security integrations that your organization has before September 30, 2024.

deprecated

End of Life for Legacy Container Security

🛑

Caution

Tenable recommends that you update any existing Legacy Container Security integrations that your organization has before September 30, 2024.

improved

Vulnerability Management: Export Permission Update

Tenable has updated the default permission logic for the bulk vulnerability and asset export endpoints. Previously, these endpoints required the Can View access control permission for the asset objects to be exported even if the user was an administrator. Now users with ADMINISTRATOR [64] user permissions can create an export even without the explicit Can View access control permission. By default, administrator users now have permission to export all assets.

improved

Vulnerability Management: Compliance Export Enhancements

Tenable has made several enhancements to the compliance export API. These enhancements improve performance and provide additional functionality for the compliance export API.