- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-27-2025 09:12 PM
Our VR integration is with tenable sc. The data comes in as tenable plugins (third party entries) We would like a way to search for CVEs without having to go through Tenable plugins (Third party Entries). This is really for reporting/ Performance Analytics purposes as our management understand CVEs, not third-party entries. They would like to see our exposure based on CVEs not third-party entries.
We have tried to use database views, but it always lists the TPE entries first and then the VITs for reach Third party entry. We are looking for a method to search for a CVE and it directly shows the VITs.
- Which way is the best way to go about this?
Solved! Go to Solution.
- Labels:
-
Integrations
-
Vulnerability Response
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-28-2025 02:59 PM
Hi Jay,
Tenable doesn’t provide the direct link between a device and a specific CVE, only the Tenable ID. There is a table named Vulnerability CVE [sn_vul_m2m_entry_cve] that is used to link Tenable IDs to CVEs. You could join it to the VI table to filter by CVE but, it would provide bogus results. As an example, Tenable ID TEN-193964 is linked to 15 different CVEs. A VI with that Tenable ID will be linked to all 15 of those CVEs even though only one of them may actually exist on the Configuration Item.
I hope that this helps,
--Joe
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-28-2025 02:59 PM
Hi Jay,
Tenable doesn’t provide the direct link between a device and a specific CVE, only the Tenable ID. There is a table named Vulnerability CVE [sn_vul_m2m_entry_cve] that is used to link Tenable IDs to CVEs. You could join it to the VI table to filter by CVE but, it would provide bogus results. As an example, Tenable ID TEN-193964 is linked to 15 different CVEs. A VI with that Tenable ID will be linked to all 15 of those CVEs even though only one of them may actually exist on the Configuration Item.
I hope that this helps,
--Joe
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-31-2025 04:18 AM
Good morning, Joe
Thanks for the answer. Yes, your response answers my questions and reiterates my current understanding of this process.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thursday
Hi James,
can you shortly explain step by step how did you solve this Problem?
i can also not work with CVEs.
Thank you
