Tenable Research Advisories: Urgent Action

Tenable Research delivers world class exposure intelligence, data science insights, zero day research and security advisories. Our Security Response Team (SRT) in Tenable Research tracks threat and vulnerability intelligence feeds to make sure our research teams can deliver sensor coverage to our products as quickly as possible. The SRT also works to dig into technical details and author white papers, blogs, and additional communications to ensure stakeholders are fully informed of the latest cyber risks and threats. The SRT provides breakdowns for the latest critical vulnerabilities on the Tenable blog.

When security events rise to the level of taking immediate action, Tenable - leveraging SRT intelligence - notifies customers proactively to provide exposure information, current threat details and how to use Tenable products and capabilities to accelerate remediation.

The dashboard identifies the vulnerabilities which were designated as Emerging Threats, and were actively monitored by Tenable. The SRT team will change the status of the vulnerability into 1 of 3 areas, Vulnerabilities Being Monitored, Vulnerabilities of Interest, and Vulnerabilities of Concern. These components group the vulnerabilities by using the Common Vulnerability and Exposure (CVE) identifier and the year the CVE vulnerability was published. Leveraging the trending over time and CVE based analysis, organizations can gain a better understanding of the threat landscape. Tenable recommends addressing missing patches as identified in the dashboard components.

The dashboard requirements are: 

• Tenable.sc 6.2.0
• Nessus 10.6.1

The following components are included in this dashboard are:

• Tenable Research Advisories - Vulnerability Counts: This component provides a count of vulnerabilities identified by the Security Response Team (SRT) as Emerging Threats. These vulnerabilities are being actively monitored by Tenable. The SRT team will change the status of the vulnerability into 1 of 3 areas, Vulnerabilities Being Monitored, Vulnerabilities of Interest, and Vulnerabilities of Concern. This component tracks all vulnerabilities that were labeled as an emerging threat using the Common Vulnerability and Exposure (CVE) identifier and the year the CVE vulnerability was published. The two columns provide the count of vulnerabilities where patch has not been applied alongside the count of vulnerabilities that have been patched.
• Tenable Research Advisories - 50 Day Trend Analysis: This component provides a trend analysis of vulnerabilities identified by the Security Response Team (SRT) as Emerging Threats. These vulnerabilities are actively monitored by Tenable. The SRT team will change the status of the vulnerability into 1 of 3 areas, Vulnerabilities Being Monitored, Vulnerabilities of Interest, and Vulnerabilities of Concern. This component tracks all vulnerabilities that were labeled as an emerging threat using the Common Vulnerability and Exposure (CVE) identifier and the year the CVE vulnerability was published. The trend lines are separated by the year the CVE was published. Additionally each series utilized the filter Vulnerability Last Observed = Last Day, allowing for the operations team to monitor the changes from day to day.
• Tenable Research Advisories - By CVE 2025: This component provides a  Common Vulnerability and Exposure (CVE) identifier Summary analysis of vulnerabilities identified by the Security Response Team (SRT) as Emerging Threats. These vulnerabilities are actively monitored by Tenable.  The SRT team will change the status of the vulnerability into 1 of 3 areas, Vulnerabilities Being Monitored, Vulnerabilities of Interest, and Vulnerabilities of Concern. This component tracks all vulnerabilities that were labeled as an emerging threat using the Common Vulnerability and Exposure (CVE) identifier and the year the CVE vulnerability was published. The chart uses the CVE identified during the calendar year 2025 and displays the top 10 CVE’s based on host count.  
• Tenable Research Advisories - By CVE 2024: This component provides a  Common Vulnerability and Exposure (CVE) identifier Summary analysis of vulnerabilities identified by the Security Response Team (SRT) as Emerging Threats. These vulnerabilities are actively monitored by Tenable.  The SRT team will change the status of the vulnerability into 1 of 3 areas, Vulnerabilities Being Monitored, Vulnerabilities of Interest, and Vulnerabilities of Concern. This component tracks all vulnerabilities that were labeled as an emerging threat using the Common Vulnerability and Exposure (CVE) identifier and the year the CVE vulnerability was published. The chart uses the CVE identified during the calendar year 2024 and displays the top 10 CVE’s based on host count.  
• Tenable Research Advisories - By CVE 2023: This component provides a  Common Vulnerability and Exposure (CVE) identifier Summary analysis of vulnerabilities identified by the Security Response Team (SRT) as Emerging Threats. These vulnerabilities are actively monitored by Tenable.  The SRT team will change the status of the vulnerability into 1 of 3 areas, Vulnerabilities Being Monitored, Vulnerabilities of Interest, and Vulnerabilities of Concern. This component tracks all vulnerabilities that were labeled as an emerging threat using the Common Vulnerability and Exposure (CVE) identifier and the year the CVE vulnerability was published. The chart uses the CVE identified during the calendar year 2023 and displays the top 10 CVE’s based on host count.  
• Tenable Research Advisories - By CVE Prior to 2023: This component provides a  Common Vulnerability and Exposure (CVE) identifier Summary analysis of vulnerabilities identified by the Security Response Team (SRT) as Emerging Threats. These vulnerabilities are actively monitored by Tenable.  The SRT team will change the status of the vulnerability into 1 of 3 areas, Vulnerabilities Being Monitored, Vulnerabilities of Interest, and Vulnerabilities of Concern. This component tracks all vulnerabilities that were labeled as an emerging threat using the Common Vulnerability and Exposure (CVE) identifier and the year the CVE vulnerability was published. The chart uses the CVE identified during the calendar years prior to 2023 and displays the top 10 CVE’s based on host count.