0
30.3.5
Australia, Zurich, Yokohama, Xanadu
Standalone Application
Note:
This app version is intended for Unified Security Exposure Management (USEM), a significant architectural upgrade to the Vulnerability Response applications.
If you are currently using Vulnerability Response and upgrading to USEM for the first time, you must use the Migration assistant for Unified Security Exposure Management to ensure a safe and successful upgrade. For full details, please refer to the KB2556844 and documentation before proceeding.
If you do not intend to upgrade to USEM, please select a version below 30.x when installing or upgrading.
Vulnerability Response Common is a framework that provides the necessary functionality to support the Vulnerability Response applications like Vulnerability Response, Application Vulnerability Response, Container Vulnerability Response, and Configuration Compliance.
- Aggregated Reporting Framework: Contains the framework using which users can create scalable reports for Vulnerability Response and associated applications such as Configuration Compliance.
- Unified Vulnerability Response Dashboard: Provides visibility from multiple vulnerability scanners and security tools to provide a comprehensive view of an organization's vulnerabilities and risks.
New
- Added a Users and Groups list view to the Admin console in the Security Exposure Management workspace to centralize access and role management.
- Added support for configuring the unique identifier used for Tenable Compliance test results to prevent results from being overwritten when multiple tests share the same control identifier.
- Updated bulk deferral to validate that selected items are not already deferred and automatically exclude them from processing, preventing overlapping deferrals.
Changed
- Updated remediation tasks in the Security Exposure Management workspace to align one‑to‑one with findings, improving traceability and simplifying task management.
- Modularized system properties in the USEM workspace to simplify configuration and management.
- Updated the Advanced Settings page to display inline error notifications for easier issue identification.
- Updated auto‑close rules to process items in parallel, reducing the time required to close large volumes of items.
- Updated risk rollup calculations for Vulnerability Sources to align with other entity types for improved accuracy.
- Updated data ingestion to automatically pause during system migration, preventing data inconsistencies.
Fixed
- Fixed an issue where reopening a resolved remediation task did not reopen all associated resolved items.
- Fixed approval level records not displaying all approver field choices after upgrading to v30.
- Fixed remediation task state changes not propagating correctly when one or more related items were already closed.
- Fixed the Opened by field on remediation tasks not displaying the creating user when the task was initiated from the workspace.
- Fixed chart rendering and color‑coding issues in the Security Exposure Management workspace under the Japanese locale.
- Improved performance across background processes, including data ingestion, auto‑close evaluation, unified dashboard daily and weekly collection, and aggregated reporting.
- Fixed an issue where work note updates on configuration compliance test groups triggered excessive background jobs, causing processing delays.
- Required plugins and products
- Dependencies
- Properties that need to be created or set to activate the content pack
- Affected business rules
- Affected script includes
- .jar files that need to get uploaded, if applicable