We are pleased to announce the general availability of Tenable Patch Management v10.1.972.17 for both SaaS and On-Premise environments. This update balances critical security hardening with substantial performance optimizations and highly requested ecosystem integrations to streamline your remediation workflows.

Here is everything you need to know about the new enhancements and fixes included in this release.

✨ Release highlights

1. Unified vulnerability and remediation workflow: Tenable Asset Tag integration 

We have deeply integrated Tenable Patch Management with your broader Tenable ecosystem, allowing you to ingest and sync Tenable Vulnerability Management Asset Tags and Tenable Security Center Asset Lists.

Rather than manually reconstructing your organization's device groups, you can now leverage your existing security infrastructure directly within your patching workflows. This integration allows you to:

• Gain instant visibility: View and browse your Tenable Vulnerability Management Tags or Tenable Security Center Asset Lists directly inside the Tenable Patch Management console workspace.
• Build dynamic business units: Instantly create Business Units (BUs) using your Tenable Vulnerability Management Tags or Tenable Security Center Asset Lists using a familiar Tag -> Category -> Value syntax.
• Streamline patch automation: Select these newly created BUs to configure, schedule, and execute both Standard and Advanced Patching Strategies.
• Structure phased rollouts: Seamlessly map tag-derived BUs into Deployment Waves to manage risk and test patches across staged deployment groups.
• Delegate granular controls (RBAC): Assign dedicated Branch Office Administrators to manage specific BUs built from your tags and asset lists, keeping local permissions aligned with corporate risk groups.

2. Expanded fleet coverage: SUSE Linux 15 SP6 support

• We have expanded our cross-platform patching engine to deliver full client compliance and patch metadata support for SUSE Linux Enterprise Server (SLES) 15 SP6 across both Server and Desktop architectures.

3. Streamlined, unified licensing UI

• We have globally removed all legacy "Enterprise" and "Express" product labels across both SaaS and On-Premise interfaces.
• Legacy references to "Patch Express" have been removed, and "Enterprise" has been cleared from Patch Enterprise Roles to deliver a clean, confusion-free workspace where every deployment unlocks the full power of the patching engine.

4. Rigorous platform hardening

Core binaries have been meticulously upgraded to eliminate known application vulnerabilities:

• Log4j upgraded to 2.25.4 (resolving CVE-2026-34478, CVE-2026-34480, and CVE-2026-34477).
• OpenJDK/JRE upgraded to 25.0.3 (Zulu version 25.34.17).
• Apache Commons FileUpload upgraded to 1.6.0 (resolving CVE-2025-48976).
• OpenSSL upgraded to 3.6.2.

📈 Performance and reporting optimizations

To improve administrative efficiency and console speed, we have introduced several significant core enhancements:

• Accelerated interface queries: Added a lightweight view (v_sensor_attribute_values_unique) designed to dramatically speed up device attribute lookups across the platform.
• Faster device inventories: Converted the Inventory Device Data Provider into a high-performance Stored Procedure to optimize page rendering times.
• Intelligent date filters: Adjusted the way date-based filters handle reporting. If a specified data timeframe concludes in the future, the system dynamically displays the last available day containing completed data instead of throwing errors or empty fields.
• Smarter schedule automation: The deployment engine now skips cycle creation for non-recurring schedules whose start times reside in the past, keeping your database clean from legacy schedule clutter.
• Enforced CVE update windows: Optimization limits have been established to prevent configuration conflicts, enforcing a minimum sync interval of 15 minutes for Tenable CVE synchronization tasks.

🛠️ Platform and UI fixes

This release addresses high-priority bug fixes aimed at maximizing stability and cross-dashboard reporting accuracy:

• Dashboard counting precision: Fixed an issue where vulnerability counts fluctuated when drilling down into specific dashboards. Similar count mismatches between high-level overviews and granular charts have been resolved for deployment failures and OneSite Health checks.
• Enterprise database scaling: Resolved resource deadlocks and high memory consumption bottlenecks during health rollups on exceptionally massive backend databases.
• Frictionless access controls: Fixed a defect with permissions management menus that occasionally triggered a 404 message or refused to load. Additionally, fixed a UI bug that caused the approval requests window to spin indefinitely if an admin lacked explicit read permissions on a specific patching strategy.
• License and setup integrity: Resolved an error that prevented software product licenses from being completely uninstalled via the console UI. We also resolved an edge case where deleting a Business Unit tied to an active deployment wave would block server setup actions.
• API validation: Corrected response handling logic for the newly introduced INITIALIZING status within the Tenable asset import REST API framework.

⚙️ Upgrade path

• SaaS / Cloud deployments: No manual action is required for your management plane. Your cloud instance has already been automatically updated to version v10.1.972.17.
• On-premise deployments: On-Premise server operators can download the latest installer package immediately by logging into the Tenable Downloads Portal. 

📖 Customer resources

• Release version: 10.1.972.17
• Release date: May 28, 2026
• Changelog: View release notes 
• Documentation: Tenable Patch Management complete documentation hub

Have feedback or deployment questions? Reach out to your Tenable representative or start a thread right here in Connect!