Forum Widgets
Recent Discussions
Tenable Patch Management v10.1.972.17 is now available!
We are pleased to announce the general availability of Tenable Patch Management v10.1.972.17 for both SaaS and On-Premise environments. This update balances critical security hardening with substantial performance optimizations and highly requested ecosystem integrations to streamline your remediation workflows. Here is everything you need to know about the new enhancements and fixes included in this release. ✨ Release highlights 1. Unified vulnerability and remediation workflow: Tenable Asset Tag integration We have deeply integrated Tenable Patch Management with your broader Tenable ecosystem, allowing you to ingest and sync Tenable Vulnerability Management Asset Tags and Tenable Security Center Asset Lists. Rather than manually reconstructing your organization's device groups, you can now leverage your existing security infrastructure directly within your patching workflows. This integration allows you to: Gain instant visibility: View and browse your Tenable Vulnerability Management Tags or Tenable Security Center Asset Lists directly inside the Tenable Patch Management console workspace. Build dynamic business units: Instantly create Business Units (BUs) using your Tenable Vulnerability Management Tags or Tenable Security Center Asset Lists using a familiar Tag -> Category -> Value syntax. Streamline patch automation: Select these newly created BUs to configure, schedule, and execute both Standard and Advanced Patching Strategies. Structure phased rollouts: Seamlessly map tag-derived BUs into Deployment Waves to manage risk and test patches across staged deployment groups. Delegate granular controls (RBAC): Assign dedicated Branch Office Administrators to manage specific BUs built from your tags and asset lists, keeping local permissions aligned with corporate risk groups. 2. Expanded fleet coverage: SUSE Linux 15 SP6 support We have expanded our cross-platform patching engine to deliver full client compliance and patch metadata support for SUSE Linux Enterprise Server (SLES) 15 SP6 across both Server and Desktop architectures. 3. Streamlined, unified licensing UI We have globally removed all legacy "Enterprise" and "Express" product labels across both SaaS and On-Premise interfaces. Legacy references to "Patch Express" have been removed, and "Enterprise" has been cleared from Patch Enterprise Roles to deliver a clean, confusion-free workspace where every deployment unlocks the full power of the patching engine. 4. Rigorous platform hardening Core binaries have been meticulously upgraded to eliminate known application vulnerabilities: Log4j upgraded to 2.25.4 (resolving CVE-2026-34478, CVE-2026-34480, and CVE-2026-34477). OpenJDK/JRE upgraded to 25.0.3 (Zulu version 25.34.17). Apache Commons FileUpload upgraded to 1.6.0 (resolving CVE-2025-48976). OpenSSL upgraded to 3.6.2. 📈 Performance and reporting optimizations To improve administrative efficiency and console speed, we have introduced several significant core enhancements: Accelerated interface queries: Added a lightweight view (v_sensor_attribute_values_unique) designed to dramatically speed up device attribute lookups across the platform. Faster device inventories: Converted the Inventory Device Data Provider into a high-performance Stored Procedure to optimize page rendering times. Intelligent date filters: Adjusted the way date-based filters handle reporting. If a specified data timeframe concludes in the future, the system dynamically displays the last available day containing completed data instead of throwing errors or empty fields. Smarter schedule automation: The deployment engine now skips cycle creation for non-recurring schedules whose start times reside in the past, keeping your database clean from legacy schedule clutter. Enforced CVE update windows: Optimization limits have been established to prevent configuration conflicts, enforcing a minimum sync interval of 15 minutes for Tenable CVE synchronization tasks. 🛠️ Platform and UI fixes This release addresses high-priority bug fixes aimed at maximizing stability and cross-dashboard reporting accuracy: Dashboard counting precision: Fixed an issue where vulnerability counts fluctuated when drilling down into specific dashboards. Similar count mismatches between high-level overviews and granular charts have been resolved for deployment failures and OneSite Health checks. Enterprise database scaling: Resolved resource deadlocks and high memory consumption bottlenecks during health rollups on exceptionally massive backend databases. Frictionless access controls: Fixed a defect with permissions management menus that occasionally triggered a 404 message or refused to load. Additionally, fixed a UI bug that caused the approval requests window to spin indefinitely if an admin lacked explicit read permissions on a specific patching strategy. License and setup integrity: Resolved an error that prevented software product licenses from being completely uninstalled via the console UI. We also resolved an edge case where deleting a Business Unit tied to an active deployment wave would block server setup actions. API validation: Corrected response handling logic for the newly introduced INITIALIZING status within the Tenable asset import REST API framework. ⚙️ Upgrade path SaaS / Cloud deployments: No manual action is required for your management plane. Your cloud instance has already been automatically updated to version v10.1.972.17. On-premise deployments: On-Premise server operators can download the latest installer package immediately by logging into the Tenable Downloads Portal. 📖 Customer resources Release version: 10.1.972.17 Release date: May 28, 2026 Changelog: View release notes Documentation: Tenable Patch Management complete documentation hub Have feedback or deployment questions? Reach out to your Tenable representative or start a thread right here in Connect!Everything is connected—whether your tools agree or not.
It's a common frustration: exposures have no boundaries and often jump from cloud to IT without warning. When every tool tells a different story, it's nearly impossible to know what to fix first. It's like having car parts scattered across five different garages when you just need the vehicle to run. We've been working on a way to bring that "whole shop" view together. If you're tired of your team chasing ghosts, these resources might help: The Perspective: This blog post shares how to bridge the gap between dev, cloud, and IT. The Technicals: This solution brief details how to integrate cloud security into your existing stack. The Visuals: Watch the video demo or walk through the guided interactive demo to see what a clear exposure picture looks like. Learn More: Explore the Ecosystem View of Risk.
May 2026 Tenable Product Newsletter
Check out our May newsletter to learn about the latest product and research updates, events, and educational content — all to help you get more value from your Tenable solutions. Tenable One Tenable Hexa AI: Intelligence into action at machine speed. We are thrilled to announce that Tenable Hexa AI, the agentic engine of the Tenable One Exposure Management Platform, is now generally available. Tenable Hexa AI orchestrates and automates security workflows to accelerate risk reduction. Built-in or custom agents: Start immediately with our pre-built agents for common security tasks like asset management and dashboard creation, or build custom agents via the MCP server for your unique environment. Execute the fix: Tenable Hexa AI handles complex multi-step tasks like identifying the root cause of a threat and automatically creating the necessary remediation tickets. Automate with confidence: You define the guardrails. Every action is fully auditable and requires the level of human oversight you choose, so you can scale automation without risking your production environment. Get more details on Tenable Connect or read the documentation. To learn more about how to leverage Tenable Hexa AI, reach out to your account team or contact us. The Tenable One Open Connector Connect more. See more. Act faster. We built Tenable One to be the open, connected hub that turns your scattered tools into a one-stop shop for risk reduction. While our standard Connectors already keep your favorite tools in sync, we’re taking integration to the next level with the new Tenable One Open Connector. We're no longer just talking about official integrations; we're talking about bringing in your data from across unsupported or custom tools, spreadsheets, and even homegrown internal systems. What this means for you: Get a more complete view of risk by bringing your security data together in a single, contextual view. Unlock an open, flexible platform for your security stack by staying independent of pre-built integrations. Act faster with automated data syncs that keep your information always current. Tailor your data mapping to enable precise segmentation that fits your organization’s needs. Ready to achieve a truly unified view of your entire attack surface? Read the blog and view the demo. To get started, see the setup guide. Lifecycle management in attack path analysis Take control of your security workflows with our new lifecycle management features in attack path analysis. You can now manually transition attack techniques through specific stages — To Do, In Review, In Progress, Resolved, and Excluded — to ensure seamless collaboration across your team. What’s new: Manual technique control: Track progress accurately by assigning specific statuses to each technique. Smart attack path sync: When you update a technique’s status, the system automatically updates the status of all related attack paths to reflect that change. Unified workflow: Align your team around a shared lifecycle, providing a clear and consistent view of every identified threat. Learn more. Tenable One + Recorded Future integration Our new Recorded Future connector bridges the gap between your internal exposure data and the external threat landscape, giving you a single source of truth to accelerate remediation where it matters most. By layering Recorded Future’s threat intelligence over Tenable’s deep attack surface visibility, you can now achieve: Truly unified visibility: View high-fidelity threat intelligence alongside your full exposure data in one pane of glass. Holistic context: Instantly see how internal asset criticality aligns with real-world exploit trends. Targeted remediation: Ignore the noise and focus exclusively on the vulnerabilities threat actors are actively weaponizing in the wild. Learn more. Tenable integrates with the Claude Compliance API for AI governance Tenable has announced an integration between the Tenable One Exposure Management Platform and the Claude Compliance API. This new capability provides security and compliance teams with unprecedented visibility and governance over enterprise AI usage directly within their existing workflows. Key highlights of this release include: Granular visibility: Monitor enterprise Claude AI interactions, including chats and file uploads, natively within Tenable One. Risk detection: Identify malicious or suspicious activity across your AI ecosystem. Regulatory alignment: Ensure AI usage complies with corporate acceptable-use policies and global mandates like the EU AI Act. This integration is available immediately for all Tenable One customers, allowing organizations to safely adopt Claude Enterprise at scale while proactively managing AI-related risks. Tenable One Cloud Exposure This month, we are focusing on automated orchestration and shifting security further left into native developer workflows. What's New: Retroactive cloud automations: Apply new or re-enabled automation rules retrospectively to your entire backlog of cloud findings to wipe out historical cloud risks in a single click. 280 cloud-native secret types: Our original generic categories are now split into 280 specific data types (like GitHub App Tokens), allowing you to customize sensitivity criteria to fit your exact cloud compliance requirements. Native PR scanning (IaC): Catch security risks natively inside GitHub and Azure DevOps pull requests so developers can fix configuration errors directly on the relevant lines of code before merging. Windows container scans: Maintain robust protection across your entire application footprint with shift-left vulnerability scanning that now supports Windows-based container images within cloud CI/CD pipelines. On-demand registry scans: Manually push critical cloud container images or full repositories to the top of the scan queue to instantly verify your security fixes. For more information on these updates, please view “documentation” inside the Tenable One Cloud Exposure interface. Tenable One Vulnerability Management Automate remediation with direct ticketing Stop bouncing between disconnected tools. You can now create Jira or ServiceNow tickets directly within your Explore Findings view and launch Exposure Response Initiatives straight from Vulnerability Intelligence. Even better, Tenable automatically closes these tickets the moment a vulnerability is fixed, eliminating tedious manual cleanup for your team. To keep your security and IT teams aligned, we've also added live ticket log tracking inside the finding details page, new ticket filters for your findings table, and easy exports for Exposure Response logs. To get started, check out our documentation or interactive tour. Clear your blind spots and validate your security coverage To protect your network, you need to know your security tools are working correctly. New dashboards and reports help you eliminate hidden gaps and prioritize fixes faster. The program health dashboard monitors your deployment health and scanning coverage. It gives you a central view to ensure your security agents are active and fully patched, preventing silent operational failures. The program health report unifies fragmented asset data and scan authentication indicators into a single document. It resolves conflicting inventories and credential issues, giving you a clean, trusted report to plan and execute remediation. The endpoint application visibility dashboard cuts out the hours your team spends hunting down software inventories. It automatically consolidates application data across endpoints so you can prioritize fixes based on real-world exploit likelihood and deployment scale. Nessus Whether you are a seasoned pro with Nessus or just starting out as a first-time user, don’t forget to check out our on-demand training courses and learn from the team that built Nessus. Nessus Fundamentals: Maximize your Nessus Professional or Expert deployments. You’ll master the essential building blocks of vulnerability assessment, conquering everything from initial installation and asset discovery to compliance checks and in-depth analysis. No prerequisites necessary. Nessus Advanced: Elevate your Nessus Expert skills. You’ll build upon your foundational knowledge to take command of external attack surface discovery, web app scans, and results analysis. Accelerate your time-to-value with a full year of unlimited access to expert-led video instruction. You will master critical workflows, maximize your security ROI, and earn a digital badge and Certificate of Completion to validate your hard-earned expertise. Learn more and enroll today at www.tenable.com/buy/training Tenable Security Center Tenable Security Center 6.8 Focus on the vulnerabilities that matter with AI-powered VPR insights and mitigation guidance. This release streamlines your operations with unified asset repositories for IPv4, IPv6, and Agents, and improves efficiency with new background query processing and scan optimization capabilities. View the full release notes to learn more. Tenable Patch Management Scale patching and simplify upgrades Broader environment coverage, faster endpoint updates, and a much smoother platform upgrade are available with the latest releases. Version 10.1.971.12 (SaaS & on-premise) expands your coverage across new Linux distributions and architectures. On your endpoints, you can now run lightweight, native driver and BIOS updates without the heavy files that cause CPU bloat, and deploy Windows upgrades via bandwidth-saving peer-to-peer rollouts. This release also cuts console memory usage, hardens library security, and fixes interface bugs affecting patch previews. Version 10.1.972.14 (server) delivers a targeted hotfix that corrects server upgrade task-sequencing and strategy validation issues, ensuring you a seamless, error-free migration from older versions. Broader environment coverage, faster endpoint updates, and a much smoother platform upgrade are available with the latest releases. Version 10.1.971.12 (SaaS and on-premises): Expands your coverage across new Linux distributions and architectures. On your endpoints, you can now run lightweight, native driver and BIOS updates without the heavy files that cause CPU bloat, and deploy Windows upgrades via bandwidth-saving peer-to-peer rollouts. This release also cuts console memory usage, hardens library security, and fixes interface bugs affecting patch previews. Version 10.1.972.14 (server): Delivers a targeted hotfix that corrects server upgrade task-sequencing and strategy validation issues, ensuring a seamless, error-free migration from older versions. How to update: SaaS tenants have been updated automatically. For on-prem deployments, download the latest installers via the Tenable Downloads Portal. For the further details, check out the release notes. Tenable One OT Exposure Tenable OT Security 4.6 Our latest release introduces a variety of new features and performance enhancements, including refined scan controls and streamlined workflows for large-scale enterprise environments. Massive subnet scaling: Now supports up to 5,000 subnets per ICP, significantly increasing visibility for distributed large enterprise deployments. Centralized network management: A new Monitored Networks page includes bulk-add capabilities and the ability to stage inactive networks before monitoring. Precision scanning: New scan customization options allow you to define specific credential usage per scan for safe discovery of sensitive assets. Streamlined platform navigation: Updated workflow for SSO/SAML users allows you to instantly pivot back to Tenable One with a single click. Remote agent updates and query restrictions: Update OT agents directly from the ICP, remove local site visits or manual CLI intervention, and restrict specific protocol queries with OT agents. Enhanced diagnostics: Deeper metadata in asset log exports for faster troubleshooting. IoT connector updates: Major stability and performance upgrades for Milestone, AvigilonES, and Exacq Edge integrations for IoT asset discovery. Update required: Tenable OT Security 4.5 Service Pack (version 4.5.61) All customers running version 4.5 should apply this upgrade immediately for optimal system stability and performance when processing high volumes of network conversations. This update also addresses communication gaps with Rockwell Stratix devices and Nessus scans. View the full release notes. Tenable Ecosystem Tenable App for Microsoft Sentinel v3.1.2 Version 3.1.2 of the Tenable App for Microsoft Sentinel is now available, bringing connector enhancements and schema updates to optimize your integration. What’s new: TIE data connector: The UI now supports multiple rsyslog configurations. Schema updates: Updated table schemas for Tenable One Vulnerability Management and Tenable One Web App Scanning vulnerabilities within the ARM Template. Improved data handling: The Tenable Vulnerability SDK now utilizes indexed_at instead of last_found. We highly recommend upgrading to v3.1.2 to ensure full support for these latest changes. For more details, please read Tenable Documentation or visit the Azure Marketplace to download. Please note, this application is also available via the Microsoft Azure Gov Cloud marketplace. Tenable events and webinars Tune in for product updates, demos, how-to advice and Q&A. See all upcoming live and on-demand webinars at https://www.tenable.com/webinars. Customer Office Hours These are recurring ask-me-anything sessions for Tenable Security Center, Tenable One Vulnerability Management, Tenable One Cloud Exposure, Tenable One Identity Exposure and Tenable One OT Exposure. Time-zone-appropriate sessions are available for the Americas, Europe (including the Middle East and Africa and Asia Pacific (APJ). Learn more and register here. On-demand TenableTalk Live: Responding to Mythos and Frontier AI vulnerability discovery: Catch the replay of this conversation about the impact of frontier AI models on the threat landscape and how security teams can evolve vulnerability discovery into a machine-speed agentic defense. Watch on LinkedIn or in Tenable Connect. Tenable customer update: April 2026: Watch this quarterly Tenable customer update to learn how to use AI to augment your security team, secure your expanding AI attack surface, uncover hidden risk across your connected IT/OT environments, and more. Products covered: Tenable One, Tenable One AI Exposure, Tenable One Vulnerability Management, OT functionality, third-party data connections, and Tenable Security Center. Tenable Research Research Security Operations Subscribe to the Research team blog posts here. Why the approaching flood of vulnerabilities changes everything — and what to do about it New content Almost 7,000 new published vulnerability plugins. More than 60 new audits delivered to customers. Read Tenable documentation.Connect More. See More. Act Faster. Introducing the Tenable One Open Connector
Our goal has always been clear: make Tenable One the most open and connected exposure management platform on the market, serving as the central hub for unified risk reduction by bringing together data from across siloed security tools into a single source of truth. With Tenable One Connectors, we took a major step forward by opening the door to broad integration with the security tools you already use. Today, we’re taking that vision even further with the final piece of the puzzle: the Tenable One Open Connector. The Tenable One Open Connector removes the last remaining silo by letting you bring additional data sources that align with the Tenable One model — not just existing Connectors, but also unsupported integrations, spreadsheets, homegrown systems, and other internal tools that were once out of reach. What this means for you: Gain a more complete view of risk by bringing your security data together in a single, contextual view. Unlock an open, flexible platform for your security stack by staying independent of pre-built integrations. Act faster with automated data syncs that keep your information always current. Tailor your data mapping to enable precise segmentation that fits your organization’s needs. Ready to achieve a truly unified view of your entire attack surface? Read the blog post Explore the guided demoDeep dive into Tenable Hexa AI—the agentic engine of Tenable One 🚀
We know that for a long time, security teams had a buffer. There was a window of time: days or even weeks between a new vulnerability being found and an attacker actually using it. That window has officially collapsed. With frontier AI models now discovering and weaponizing vulnerabilities in minutes, the old way of doing things is a major risk. If your team is stuck in a cycle of manual triage, cross-referencing spreadsheets, and navigating the operational friction of coordinating handoffs between departments, you are moving at human speed against an AI-driven threat. Today at EXPOSURE 2026, we officially announced the general availability of Tenable Hexa AI. Tenable Hexa AI is the agentic engine of the Tenable One Exposure Management Platform designed to help you accelerate risk reduction and reclaim your time. What makes Tenable Hexa AI a game-changer? Your choice of agents: You can use our pre-built, out-of-the-box agents to start reducing risk immediately, or create custom agents tailored to your organization’s environment using the Model Context Protocol (MCP) server. Advanced multi-step reasoning: Seamlessly reason across modern attack surfaces to solve complex security challenges in a single request. Automated remediation workflows: Automatically generate and route customized remediation tickets and audit-ready reports directly within the platform to kickstart your response. End-to-end exposure path insights: Uncover hidden risks via identity-aware search. Gain deep visibility into exposure paths by instantly querying service accounts, privileged users, and AD groups. Why it’s different Tenable Hexa AI wins on contextual supremacy. It is fueled by Tenable’s Exposure Data Fabric—the industry’s most comprehensive repository of contextualized exposure data. While others are guessing based on generic public models, Tenable Hexa AI is making informed decisions based on your actual business risk. Explore the details Whether you want to read the strategic vision or see the engine in action, we’ve made all the resources available below: Read the press release: Get the full scoop on our GA announcement and how Tenable is leading the shift to agentic exposure management. Visit the Tenable Hexa AI webpage: Explore features, use cases, and how the Exposure Data Fabric powers these capabilities. Read the launch blog: A deep dive from our product leadership on the agentic engine and why verifiable trust is at the core of Tenable Hexa AI. Take the guided walkthrough: Get a step-by-step demo of Tenable Hexa AI in action. Explore real-world use cases: Get prompting guidance with our Tenable Hexa AI Prompt Cookbook. Take a deep dive with documentation and release notes: VM Release Notes EM Release Notes Tenable Hexa AI Settings VM User Interface Guide | Use Tenable Hexa AI via MCP Server EM User Interface Guide | Use Tenable Hexa AI via MCP Server How to get started To discuss how Tenable Hexa AI could help your team, please contact your Tenable account representative or reach out to Customer Care. Have questions? Join our Tenable Hexa AI customer office hours. Get the details here.NEW! Tenable One + Recorded Future Integration
Our new Recorded Future connector bridges the gap between your internal exposure data and the external threat landscape, giving you a single source of truth to accelerate remediation where it matters most. By layering Recorded Future's threat intelligence over Tenable's deep attack surface visibility, you can now achieve: Truly Unified Visibility: View high-fidelity threat intelligence alongside your full exposure data in one pane of glass. Holistic Context: Instantly see how internal asset criticality aligns with real-world exploit trends. Targeted Remediation: Ignore the noise and focus exclusively on the vulnerabilities being actively weaponized in the wild. Learn more: https://docs.tenable.com/exposure-management/Content/connectors/recorded-future-connector.htmNEW in Tenable One! Lifecycle Management in Attack Path Analysis
Take control of your security workflows with our new lifecycle management features in Attack Path Analysis. You can now manually transition attack techniques through specific stages- To Do, In Review, In Progress, Resolved, and Excluded- to ensure seamless collaboration across your team. What’s New: Manual Technique Control: Track progress accurately by assigning specific statuses to each technique. Smart Attack Path Sync: When you update a technique’s status, the system automatically updates the status of all related attack paths to reflect that change. Unified Workflow: Align your team around a shared lifecycle, providing a clear and consistent view of every identified threat. Learn more >>
[GA] Tenable Patch Management v10.1.972.14 (Server) is LIVE!
Tenable is pleased to announce the GA release of TPM v10.1.972.14 (Server). This quality release provides a hotfix build that resolves an issue found in the upgrade from 10.0.971 to 10.1.972.12. Release Highlights Upgrade Task Sequencing: Resolves an issue where the order of upgrade tasks was incorrect from 10.0.971 to 10.1.972.12. Intent Object Validation: Resolved an issue where using DeploymentWaves objects from a Simple Patching Strategy in an Advanced Patching Strategy blocked upgrades. Validation Enforcement and Migration Stability: Enforced validation to prevent the usage of Simple Patching Strategy generated intent objects in Advanced Patching Strategies. Migration Stability: Addresses a specific failure that arises if a customer used a Simple Patching Strategy's DeploymentWaves object in a separate Advanced Patching Strategy. Upgrade Path SaaS: Your SaaS Tenant is already upgraded! On-Prem: Download the latest Server installer from the Tenable Downloads Portal. Customer-Facing Resources: Release Date: May 07, 2026 Release Version: 10.1.972.14 (Server) Changelog: View Release Notes Docs: TPM Complete Documentation Questions? We’re a ping away! Reach us at connect.tenable.com. Happy Patching! – Tenable Patch Product ManagementModern infrastructure, minimal effort: the next Tenable Patch Management release is here
The April 2026 release of Tenable Patch Management is officially live. This update focuses on the unpatchables—modern ARM architectures, massive Windows feature updates, and performance-heavy drivers—giving you broader coverage without the operational lag. What’s changing and why it matters: Support for the modern cloud (Linux ARM): The value: Organizations are increasingly adopting ARM-based architectures (like AWS Graviton) for better cost and power efficiency. Tenable Patch Management now provides full patch lifecycle management for ARM-based versions of RHEL, Ubuntu, Debian, and more. Use case: If your DevOps team is scaling web-scale applications on ARM-based cloud instances, you can now include these specialized endpoints in your standard autonomous patch strategies, ensuring they receive the same security rigor as your traditional x86 fleet. Zero-friction windows upgrades: The value: We’ve automated the big ones. Windows 10/11 Feature Updates are notoriously difficult to manage due to their size and complexity. Tenable Patch Management now automates the eligibility checks and phased rollouts of these updates, utilizing peer-to-peer distribution to protect your bandwidth. Use case: A security manager can set a policy to roll out the latest Windows 11 Feature Update in waves, starting with a canary group in IT for validation before moving to broader business units, ensuring a smooth transition without disrupting global operations. Lightweight driver patching: The value: We’ve ditched heavy CAB-based catalogs. Get lightning-fast visibility into Dell, HP, and Lenovo drivers using native OS metadata. Use case: You can now perform frequent driver scans across thousands of remote laptops without worrying about "scan bloat" or slowing down employee machines during peak hours. Expanded Linux coverage & platform speed: The value: Stay current with the latest enterprise environments. We’ve added comprehensive support for Amazon Linux 2023 (AL2023), the latest Fedora (42/43) releases, and the newest SUSE and OpenSUSE iterations (including SLES/SLED 15 SP7 & 16). Combined with our migration to Java 25 virtual threads, we’ve slashed the memory footprint for both client and server, making the platform faster and leaner. In addition to all of the new features, we’re also making the following UI enhancements and bug fixes: Patch filter preview: Resolved a bug where multiple filter categories in the Strategy Editor (e.g., Tenable.vpr, risk.cvssscores) failed to return results when using the "Preview Filtered Software" function. Simple preview: Fixed an issue in the Simple Strategy Editor where the "Preview Targeted Patches" button returned empty results for products with a SoftwareProduct parent, including all Windows OS, Linux, and Driver patches. Pre-staging bug: Fixed a critical issue where Windows Update deployments would fail to start if the "pre-staging" option was enabled. Save as API: Resolved a REST API error that occurred when using the "Save As" feature on an existing strategy template. Character limits: Increased the character limit for User Interaction settings text fields (specifically the HTTP POST Message field) to prevent data truncation and database errors. Get the full details This release is available for both Tenable Patch Management SaaS and On-Prem customers. For a deep dive into the new distributions (Amazon Linux 2023, SLES 16, Fedora 42 & 43) and technical specs, check out the resources below: 👉 [Release Notes] 👉 [Technical Documentation] 👉 [Downloads]April 2026 Tenable Product Newsletter
Check out our April newsletter to learn about the latest product and research updates, upcoming and on-demand webinars and educational content — all to help you get more value from your Tenable solutions. EXPOSURE 2026 The Tenable Exposure Management Conference There’s still time to register for EXPOSURE 2026, the first and only in-person event dedicated to exposure management for the AI era. Join us in Boston, Mass., from May 19-21, 2026, to: Get a practical blueprint for securing your AI attack surface. Hear real-world strategies from the industry’s top security executives. Master new techniques in hands-on labs and exclusive training sessions. Register now! Product update: Standardizing Tenable risk scoring Coming July 1: A new standard for VPR For the past several months, many customers have utilized VPR (Beta) to gain deeper insights into exploitability. We are excited to announce that on July 1, this model will be promoted to the primary Vulnerability Priority Rating (VPR) across the Tenable platform. By standardizing on this advanced model, we are retiring legacy VPR scoring to ensure every customer benefits from our most sophisticated threat intelligence. We're also enhancing our asset classification engine. As a result, customers with access to Asset Criticality Ratings (ACR) will see these scores more accurately reflect real-world business risk. Read the full update on Tenable Connect. Tenable Cloud Security Stop chasing ghosts. Start fixing what's actually exposed. This month, we’re trading “potential risk” for proof. Spotlight: Reachability, validated Network Scanner results now feed directly into our core risk engine. Instead of flagging every internet-facing asset, Tenable dynamically confirms what’s actually reachable across AWS, GCP, Azure, and OCI, so you chase toxic combinations on truly exposed assets, not shadows behind a WAF. Also new Unified accounts page. One view for every cloud and identity account. Goodbye, provider silos. More wins for your team Protect dev velocity. Exclude unresolvable CVEs from container scans so noise doesn’t break builds. Effortlessly scale triage. Turn any Explorer investigation into a permanent automation rule. Automate least privilege. Auto-generate custom roles for over-privileged Entra ID and GCP groups based on real usage. Find what others miss. Updated engine surfaces vulnerabilities buried in nested JAR files. View full release notes → Tenable Vulnerability Management Introducing VM-Native OT Discovery Safely identify and profile connected PLCs, HMIs, and IoT devices using the vulnerability management toolset you already own. No specialized hardware or complex deployments required. Turn your existing IT security tools into a safe OT discovery engine today and get visibility into your IT/OT security gap. Watch the guided demo to see this new capability in action. Review the latest documentation for Scan Templates and Discovery Settings to get started. Find and fix hidden risks across your infrastructure To protect your environment, you need a clear view of every asset and vulnerability. New reports and dashboards give you visibility to find hidden exposures in your Java, database, and operating system layers before they lead to a disruption. Identify every Java vulnerability: Go beyond a simple update to secure Java and see how unmanaged applications expand your risk. Java visibility and exposures dashboard: Get a full view of your Java ecosystem to find legacy flaws and library exploits that could give attackers access to your internal network. Java visibility and exposures report: Turn complex scan data into a clear map of your assets to find hidden weaknesses in unpatched installations before they cause a disruption. Prioritize your database security: Protecting your data depends on knowing which databases are most vulnerable. This new report and dashboard help your team close exposures and meet audit requirements by highlighting critical gaps. Database application visibility and exposures dashboard: Use this one-stop shop to see all supported and unsupported databases in one place. You can quickly see which assets are exploitable or have been active for too long, so you know what to patch first. Database visibility and exposures report: Streamline your compliance audits and vulnerability assessments with a clear breakdown of your database risks and best practices. Inventory your assets and improve scan accuracy: Full visibility requires knowing exactly what is running on your network. Operating system and application inventory with data troubleshooting report: Get a high-level summary of your OS and application instances. Includes specific queries to help you identify and fix scan fidelity issues for data accuracy and effective security operations. Tenable Nessus We’re thrilled to announce that Tenable Nessus v10.12 is now available for early access, with general availability expected later this month. This release streamlines your workflow with a revised interface and updated security protocols. Organize scans: Simply drag and drop existing scans from a list view directly into a folder or directory for easier organization. Import files: Instantly import a scan file (like .nessus) by dragging it from the local desktop into Nessus. OpenSSL 3.5 support: Nessus now fully supports OpenSSL 3.5, ensuring your vulnerability assessment operations meet the latest cryptographic standards. FIPS-140.3 support: Support for the FIPS 140-3 standard has been added. View Nessus 10.12 product documentation for more info Tenable Security Center Tenable Security Center 6.8 Focus on the vulnerabilities that truly matter with AI-powered VPR insights and clear mitigation guidance. This release streamlines your operations with unified asset repositories for IPv4, IPv6, and Agents, and improves efficiency with new background query processing and scan optimization tools. Foundational visibility for cyber-physical systems with VM-native OT Discovery We recently added native OT discovery capabilities in Tenable Security Center, allowing you to quickly map unknown/unmanaged cyber-physical systems (PLCs, IoT devices, etc.) using the tools you already own. Get insight into mission-critical OT assets across your network without risking disruption or the need for additional agents or add-on purchases. Find out how to configure your first scan here. View full release notes → Tenable OT Security Introducing Tenable OT Security 4.6 Our latest release introduces a variety of new features and performance enhancements, including refined scan controls and streamlined workflows for large-scale enterprise environments. Massive subnet scaling: Now supports up to 5,000 subnets per ICP, significantly increasing visibility for distributed large enterprise deployments. Centralized network management: A new Monitored Networks page includes bulk-add capabilities and the ability to stage inactive networks before monitoring. Precision scanning: New scan customization options allow you to define specific credential usage per scan for safe discovery of sensitive assets. Streamlined platform navigation: Updated workflow for SSO/SAML users allows you to instantly pivot back to the Tenable One platform with a single click. Remote agent updates and query restrictions: Update OT agents directly from the ICP, remove local site visits or manual CLI intervention, and restrict specific protocol queries with OT agents. Enhanced diagnostics: Deeper metadata in asset log exports for faster troubleshooting. IoT connector updates: Major stability and performance upgrades for Milestone, AvigilonES, and Exacq Edge integrations for IoT asset discovery. Update required: Tenable OT Security 4.5 Service Pack (version 4.5.61) All customers running version 4.5 should apply this upgrade immediately for optimal system stability and performance when processing high volumes of network conversations. This update also addresses communication gaps with Rockwell Stratix devices and Nessus scans. View full release notes → Tenable Identity Exposure Sharper signal. Steadier platform. This month, we are making the detections you rely on more precise, and the platform underneath more resilient. Detections that cut through the noise Golden Ticket IoA, now directory-aware. Smarter logic means fewer false positives and fewer missed hits in multi-domain environments. Richer PetitPotam context. Detections now surface hostnames and source IPs, so triage starts with answers, not questions. Platform you can count on Accurate API pagination. Iterate through result sets cleanly for faster, more reliable reporting. Self-healing listeners. RabbitMQ and Sysvol connections now auto-recover after restarts or network blips. View full release notes → Tenable PCI ASV Tenable PCI ASV interface update The Tenable PCI ASV interface will change on or around May 8, 2026, to simplify your compliance workflow. Changes will not affect your data, scan history, attestation records, or scan configurations. Here’s what’s changing: Renamed actions: Submit PCI is becoming Import to ASV Workbench, and the In Remediation tab changes to Scan Customer Review. Easier review: A new Accept button and compliance dialog let you confirm requirements in fewer clicks, with a progress indicator to track your status in real-time. Unified vulnerability view: Failures and Disputes merge into a single Vulnerability Review & Disputes tab. Updated Navigation: The Submit to ASV Review button is moving to a more intuitive position in the workflow. The changes will happen automatically. You don’t need to take action. Questions? Contact Tenable Support or your Customer Success Manager. Tenable Training and Product Education Enhanced Tenable Vulnerability Management training now available Maximize your security investment with the redesigned Introduction to Tenable Vulnerability Management course, available at no cost in Tenable University. This updated experience includes interactive elements, demonstration videos, and knowledge checks to help you quickly gain practical expertise. You will navigate the latest user interface with ease while implementing recommended settings to optimize your platform configuration from day one. Tenable Connect Join the Tenable Connect Office Hours group Missed a live Office Hours session? No problem! We are excited to launch the official Office Hours group to provide you with a centralized hub for Office Hours sessions and support. When you join the group, you’ll be able to: Watch recordings: Access the library of past regional Office Hours sessions at your convenience. Review key Q&As: Review important questions and expert answers from every call so you can find solutions without watching the full video. Search with ease: Use Tenable Connect’s unified search to find specific topics discussed across any of our recorded sessions. Don't miss a beat! Join the group to catch up on the latest sessions and stay ahead of the curve. And register for upcoming live Office Hours sessions here. Tenable Webinars Tune in for product updates, demos, how-to advice, and Q&A. See all upcoming live and on-demand webinars at tenable.com/webinars. On-demand Tenable customer update: April 2026: Watch this quarterly Tenable customer update to learn how to use AI to augment your security team, secure your expanding AI attack surface, uncover hidden risk across your connected IT/OT environments, and more. Products covered: Tenable One, AI Exposure, Tenable Vulnerability Management, OT functionality, third-party data connections, and Tenable Security Center. Customer Office Hours Recurring ask-me-anything sessions for Tenable One, Tenable Security Center, Tenable Vulnerability Management, Tenable Cloud Security, Tenable Identity Exposure and Tenable OT Security. Time-zone-appropriate sessions are available for the Americas, Europe (including Middle East and Africa), and Asia Pacific (APJ). Register here. Tenable Research Research Security Operations blog posts Subscribe to the Research team blog posts here. The hidden cost of AI speed: Unmanaged cyber risk Supply chain attack on Axios npm package: Scope, impact, and remediations Research release highlights Potential Vulnerabilities: Tenable Research is officially introducing Potential Vulnerabilities. A potential vulnerability is a finding that has a lower degree of certainty as to whether the assessed application is or is not vulnerable. Improvement to printer OS fingerprinting: Scanned printers will now have an OS artifact surfaced in their scan host metadata if the target has been identified as a printer when the Scan Network Printers policy option is disabled. Content coverage highlights Almost 4,500 new published vulnerability plugins. More than 130 new audits delivered to customers. Read Tenable documentation.
