Tenable Vulnerability Management (TVM) is a cloud-based vulnerability scanning and assessment service that continuously discovers, assesses, and reports on vulnerabilities across an organization's IT infrastructure. Tenable scanners perform comprehensive vulnerability assessments, including:
- Network scanning
- Service detection
- SSL/TLS certificate discovery.
The Tenable Vulnerability Management plugin integrates information retrieved by the following Tenable Vulnerability plugins.
Plugin ID | Description |
|---|---|
10863 | Retrieves SSL certificate information (primary source of certificate data) |
10107 | Identifies HTTP server type and version |
10263 | Identifies SMTP mail server information |
21643 | Enumerates the supported SSL Cipher Suites |
Tenable Vulnerability Management plugin:
- Authenticates to Tenable using API access and secret keys
- Retrieves vulnerability data specifically related to SSL certificates (Plugin ID 10863),
- Enriches the certificate information with service detection data (web server types/versions, SMTP servers) and cipher suite information captured by Tenable scanners.
This plugin supports incremental scanning, which significantly improves performance in environments with large numbers of assets.