improved
Vulnerability Management: New Asset and Vulnerability Export Properties
about 1 month ago by Lance Duvall
Tenable has added 5 new properties to the asset export data returned by the Download assets chunk endpoint, and 7 new properties to the vulnerability export data returned by the Download vulnerabilities chunk endpoint.
The Download assets chunk endpoint now includes the following properties in the response:
Property | Data Type | Description |
---|---|---|
last_authentication_attempt_date | String | An ISO timestamp indicating the date and time when Tenable Nessus last attempted to sign in, either with SSH on Unix-based systems or SMB on Windows systems. |
last_authentication_success_date | String | An ISO timestamp indicating the date and time when Tenable Nessus last authenticated successfully. Note that Tenable Nessus Agent scans do not update this property since agents do not log in. |
last_authentication_scan_status | String | Indicates if the last authentication attempt by Tenable Nessus was successful. Possible values are Success , Failure , and N/A . Note that Tenable Nessus Agent scans do not update this property since agents do not log in. |
last_scan_target | String | The IP address or fully qualified domain name (FQDN) of the asset targeted in the last scan. |
serial_number | String | The unique identifier of the asset as assigned by the manufacturer. This property is only available for network devices. |
The Download vulnerabilities chunk endpoint now includes the following properties in the response:
Property | Data Type | Description |
---|---|---|
asset.serial_number | String | The unique identifier of the asset as assigned by the manufacturer. This property is only available for network devices. |
plugin.has_workaround | Boolean | Indicates if a workaround exists for the vulnerability. |
plugin.vendor_unpatched | Boolean | Indicates if the vulnerability has an available patch from the vendor. |
plugin.workaround | String | A description that explains a workaround for remediating the vulnerability. |
plugin.workaround_published | String | An ISO timestamp indicating the date and time when the workaround was published. |
plugin.workaround_type | String | The workaround action required to remediate the vulnerability. Possible workaround types include:
|
scan.last_scan_target | String | The IP address or fully qualified domain name (FQDN) of the asset targeted in the last scan. |