Greetings! Check out our October newsletter to learn about the latest product and research updates, upcoming, and on-demand webinars and educational content — all to help you get more value from your Tenable solutions. 

Tenable One
What's New in Tenable One: September 2025 Release
This month's release delivers deeper visibility, faster analysis, and more flexibility in managing your organization's risk exposure.

• Dashboard data drill-down: Dive deeper into your dashboards. Investigate the data behind widgets, KPIs, and trends to validate insights and easily explore details.

• New dashboard widgets: The widget library now includes seven additional built-in widgets for more ways to visualize and analyze your exposure data.

• Global Search on Findings page: Build and run complex queries directly from the findings page to pinpoint the exact data you need without switching pages.

• Dedupe: Information order configuration: Control which sources take priority in property deduplication, so your asset inventory always reflects the most trusted data.

See all platform enhancements >>

Tenable Cloud Security

Reminder: Tenable Cloud Security requires that you log in to view documentation and release notes. To try/see the product, contact your account manager or request a demo.  

New use cases and research insights

• Three new demonstrations of common Tenable Cloud Security uses to ease your path to cloudsec maturity: Ecosystem view of risk, Complete cloud lifecycle visibility and Cloud misconfiguration identification and remediation. 
• Recently published Tenable research items: 
• Gemini Trifecta: Read about the three (now-remediated!) vulnerabilities Tenable cloud research discovered within Google’s Gemini AI assistant suite.
• Security advisory: “Shai Hulud”: Find packages potentially compromised by this NPM supply chain attack flagged in your Tenable Console as “advisory vulnerabilities.” Take action: 1) Update/roll back affected packages. 2) Rotate secrets that may have been exposed.
• A new Insight Brief that explores key observations on complexity gleaned from our recent “State of the cloud & AI security” report.

Platform: Usability and reporting/display  enhancements

• Streamlined console navigation: Enjoy the new console navigation menu, fully redesigned for a more intuitive and efficient user experience. This major update helps you find the insights/tools you need faster. 
• Column selection for inventory reports: Customize your inventory reports by selecting specific columns for inclusion. Create more focused, efficient reports with just the information you need.
• TV mode: View any dashboard in this full-screen, distraction-free mode. Use for continuous, real-time, operational display and broad visibility of security status. 

CWP - Workload protection

• Enhanced Vulnerability Priority Rating (VPR): Benefit from Tenable's enhanced VPR, now twice as efficient. Enable teams to focus on just the 1.6% of vulnerabilities posing real risk, with prioritization inclusive of industry/geo context. See the white paper.
• Improved coverage and accuracy in vulnerability detection: The addition of scoped NPM packages enhances visibility into Node.js workloads. No more flagging in unused kernel versions improves Linux workload vulnerability detection accuracy.
• Added granularity to Kubernetes workload vulnerability management: Directly map vulnerability findings in container images to specific Kubernetes workloads (e.g., EKS). This enhancement clarifies risk attribution and streamlines remediation by application or team.

IAM - Identity and access management 

• Configure trusted vendors: Tenable now lets you mark external vendors as trusted. This helps reduce finding severity and close toxic combinations, and focus monitoring on meaningful external access to make risk management more efficient.  Learn more.
• Automatically remediate unused SSO permissions: Quickly identify and remove inactive SSO groups or users with a single click to streamline your risk mitigation process. This strengthens least-privilege enforcement and reduces identity risk.

JIT - Just-In-Time Access

• Expanded Slack actions: We’ve enhanced Slack support with key actions available in the JIT Portal, including self-revoking active sessions and submitting recurring access requests. These updates make JIT workflows in Slack faster and more productive to drive adoption of this high-value feature. Read about JIT access here.

Tenable Vulnerability Management

Accelerate plugin testing with quicker agent updates

Speed up your plugin testing workflows and deploy the most recent plugins faster using the new Accelerated Plugin Updates feature. This provides an additional toggle within your agent profiles. When enabled, the agent will check in more frequently than the default to look for any changes made to the plugin scheduling section “Select Plugin set from last 30 days.”

This increased check-in frequency helps you shorten the time it takes to get tested plugins onto assets. Note that this feature only supports updates to the “Select Plugin set from last 30 days” setting, and does not impact any other plugin update configurations. Find more details in the documentation.

Granular control with Agent scan by tag

Achieve highly granular control over your vulnerability management by leveraging the new Agent Scan By Tag feature. This empowers you to target your agent scans using both the existing agent group criteria and the asset tags you have defined. This streamlines your scanning workflows by allowing you to zero in on specific asset environments, ownership groups, or criticality levels.

Please note, this functionality is currently only supported for scheduled agent scans. To begin configuring your new, targeted scans, read the documentation or release notes.

Tenable Nessus

Nessus 10.10

Early Access for Nessus 10.10 includes the following features:

• Global timeout setting to define the maximum duration for a host scan.
• Support for the upcoming software and plugin updates via scanner profiles for Tenable Vulnerability Management-linked scanners.
• Support for the upcoming Tenable Vulnerability Management plugin download concurrency feature.
• Support for the upcoming CPU resource limit setting for Tenable Agents, which will be configurable via agent profiles in Tenable Nessus Manager.

To opt in to Early Access, contact your Tenable representative or configure the Nessus Update Plan in the user interface. See release notes. 

Ended support for Terrascan in Nessus

Tenable has ended support for the Terrascan feature, effective Sept. 30, 2025. Terrascan is no longer available for download or supported, and Tenable has removed all related Terrascan functionality from Tenable Nessus. Tenable recommends using Tenable Cloud Security for infrastructure as code (IaC) scanning going forward. For more information, see the Tenable Nessus Terrascan End-of-Service FAQ.

Tenable Security Center

What’s new in Tenable Security Center 6.7

See your environment more clearly and act faster on what matters most. This release delivers a modern, intuitive experience that improves usability, scalability, and efficiency across your operations.

Here’s what’s new:

• Explore – Assets (Preview): Get a modern view of your assets with structured data, advanced filtering, and improved navigation that helps you identify risks faster.
• Triggered Agent scanning: Automate Tenable Agent scans based on conditions you define, so you can catch vulnerabilities sooner and respond confidently.
• Credential verification scan policy: Quickly validate Windows and Unix credential pairs with a built-in template that confirms authentication success.
• Performance and Reporting Enhancements: Experience faster scan ingest, improved reporting speed, and smoother backend performance that keeps up with your team.

Before you upgrade: Version 6.7 supports upgrades from SC 6.3.0 and higher. Hardware specifications are updated for this release. Systems below the new recommendations will still upgrade successfully, but performance may vary.

Upgrade now to take advantage of these improvements and keep your environment running at peak performance. Read the release notes or upgrade now.

Patches for Tenable Security Center

Address recent vulnerabilities by applying two security patches: 202509.2.1 (resolves Critical SimpleSAML CVEs) and 202509.1 (resolves High PostgreSQL CVEs). You need manual installation for both. The Software Updates feature is not compatible with these patches.

Key requirements:

• Compatibility: Patch 202509.2.1 applies to SC 6.4 through 6.6. Patch 202509.1 applies to SC 6.5.1 and 6.6.0.
• Prerequisite: If you are on SC 6.5.0, you must first upgrade to 6.5.1.
• Upgrade Note: Patch 202509.2.1 may impact future SC upgrades. See this KB article  for more information.

See the release notes and advisories (TNS-2025-20 and TNS-2025-18) for full details and download the patches here.

 

Tenable Patch Management

Tenable Patch Management v9.3.969.2 (on-prem)

We’re excited to announce Tenable Patch Management (On-Prem) 9.3.969.2. This release includes major feature upgrades, new database server requirements, quality improvements, critical security, and bug fixes across the platform. 

Key updates include:

• Cross-platform installation enhancements
• A new auto-upgrade process enables clients to seamlessly upgrade to match the server version (9.3+).
• Microsoft 365 Patching Support: Native support for Microsoft 365, Office 2024 LTS, 2024, 2021, Visio, and Project with delta Updates, to reduce monthly updates to 30-50MB from 3GB per language, saving up to 95% bandwidth.
• New Client Validation Tool to verify deployments

For a list of covered third-party applications, please visit here and note that we are always adding more. 

For more information, please read the Tenable documentation and release notes and visit the downloads portal to download the latest version.

Tenable OT Security

Fortify your CPS security posture with Tenable OT Security 4.4

The latest version of Tenable OT Security is now available, designed to give you a more integrated, efficient, and comprehensive view of your operational environment.

Key highlights in this release include:

• Unified enterprise reporting for your exposure management program: Sync OT asset tags directly to Tenable One and Tenable Security Center to enrich your enterprise-wide security workflows with critical OT context.
• Reduced alert fatigue: A new Policy Violations dashboard unifies disparate alerts into actionable insights to help you focus on your most critical exposures first.
• Deep visibility for specialized environments: Gain granular asset details on sensitive devices by importing PLC project files (starting with Rockwell Automation) without active queries. We’ve also added support for Foxboro DCS and VXLAN environments.
• Streamlined workflows and sensor configuration: A new workflow helps you easily find and merge duplicate assets for a more accurate inventory, while a simplified sensor configuration reduces deployment complexity.

Review the full release notes to learn more about what’s new and how to upgrade.

Tenable Identity Exposure

Unified Exposure Center
Get the full picture, faster. The Exposure Overview and Exposure Instances pages are now combined into a single Exposure Center for a simpler, more unified experience. With new quick filters, you can instantly focus on what matters most and cut through noise with ease.

Streamlined IoA deployment
Deploy indicators of attack (IoAs) more securely and efficiently. The updated process now uses a signed PowerShell launcher script stored in SYSVOL to reduce complexity and improve security. Plus, Group Policy (GPO) automatically deploys the Tenable certificate, so setup is smoother than ever.

See Tenable Identity Exposure documentation.

Tenable Ecosystem

Tenable for ServiceNow update

We’re excited to announce version 6.2.0 of the Tenable apps for ServiceNow, which now support Zurich. The Tenable apps now support Washington, Yokohama, and Zurich.

We are sunsetting the Tenable.ot for VR application. Please utilize the ServiceNow built application Vulnerability Response Integration with Tenable. View full details here.

For more details, read the ServiceNow User Guide and visit the ServiceNow Store for the appropriate Tenable apps for ServiceNow. 

Tenable Add-on for Splunk v8.0.1

We’ve updated the Tenable Add-on for Splunk v8.0.1 with general bug fixes, along with improved compliance data collection by preserving original fields.

For more information, please read the Tenable documentation, and visit Splunkbase to download.

Tenable Connect 

We're excited to announce a new case creation and management experience. This release will streamline how you open and track cases while leveraging Generative AI to improve search and help you find answers faster. 

Tenable Research

Join Tenable’s Research Special Operations (RSO) team on Tenable Connect and engage with us in the Threat Roundtable group for further discussion on the latest cyber threats.

Research security operations

• CVE-2025-20333, CVE-2025-20362: Frequently Asked Questions About Zero-Day Cisco Adaptive Security Appliance (ASA) and Firewall Threat Defense (FTD) Vulnerabilities
• Microsoft’s September 2025 Patch Tuesday Addresses 80 CVEs (CVE-2025-55234)
• How Tenable Found a Way To Bypass a Patch for BentoML’s Server-Side Request Forgery Vulnerability CVE-2025-54381 
• WordPress - WP Social Ninja exposed API Key
• WordPress - Feed Them Social exposed API Key
• BentoML CVE-2025-54381 (SSRF) Bypass
• Microsoft Learn MCP Server Server-Side Request Forgery

Research release highlights

• Improved Printer Fingerprinting
• New Plugin Family: UnionTech Local Security Checks
• Machine Learning SinFP Model Updates for OS Fingerprinting
• Python Package Enumeration - Detection Updates

Content coverage highlights

• Almost 6,000 new vulnerability plugins published, including new AI Aware detections and Shai-Hulud worm. 
• More than 48 new audits delivered to customers!

Tenable Training and Product Education

Refreshed courses and better learning experience

Explore the updated Introduction to Tenable Cloud Security and Introduction to Tenable Identity Exposure courses. They now feature a modernized interface and smoother navigation for an improved learning experience. Access these two no-cost courses, and many more on-demand options, anytime at Tenable University.

Tenable Webinars

Tune in for product updates, demos, how-to advice and Q&A. See all upcoming live and on-demand webinars at https://www.tenable.com/webinars

Live 

• Oct 22, 2025: Securing the future of AI in your enterprise. Policy frameworks that balance opportunity and oversight. 
• Oct 22, 2025: Beyond the endpoint: Exposure management that’s proactive (EMEA). Why endpoint-first vulnerability management isn’t enough. (EMEA session)
• Nov. 4, 2025: Nessus customer update. Web application scanning with Nessus Expert.
• Nov. 4, 2025: Tenable OT Security customer update. What’s new in Tenable OT Security 4.4 and a sneak peek of Tenable OT Security 4.5.
• Nov. 5, 2025: Tenable Vulnerability Management customer update. Best practices for role-based access control (RBAC).
• Nov. 5, 2025: Tenable Web App Scanning Management customer update. Using WAS to identify and assess AI in your web applications.
• Nov. 6, 2025: Tenable One customer update. Third-party data in Tenable One.
• Nov. 6, 2025: Tenable Security Center customer update. How to automate reporting and remediation with alerts.

On-demand

• Beyond the endpoint: Exposure management that’s proactive. Why endpoint-first vulnerability management isn’t enough.
• October Nessus customer update. Troubleshooting common Nessus issues.
• October Tenable Vulnerability Management customer update. Operationalizing AI Aware to discover Shadow AI in your environment.
• October Tenable One customer update. Identity security in an exposure management program.
• October Tenable Security Center customer update. In-depth guide to user roles and permissions.

Customer office hours 

These are recurring ask-me-anything sessions for Tenable Security Center, Tenable Vulnerability Management, Tenable Cloud Security, Tenable Identity Exposure and Tenable OT Security. Time-zone-appropriate sessions are available for the Americas, Europe (including the Middle East and Africa and Asia Pacific (APJ). Learn more and register here.

Tenable documentation

Read Tenable documentation.