Vulnerabilities section

Here you will find all details about data visible in target file in Vulnerabilities section.

Column details explanation

Header name

Column name in the target xlsx file.

Description

Short description of particular data.

Source

Information about the exact source from where NFA takes data.

Post-processing

Information on how the gathered data is processed, if it’s processed at all.

Column type

default - column always appears in the report.

debug - column appears in the report only if the add debug data option has been enabled.

Note

Some of the columns are visible only if you use add debug data option for analysis (see Settings to adhere more information about this option). For all of these columns you will find below information Column type : debug.

Nessus scanner IP

Nessus scanner IP - column details

Header name

Nessus scanner IP

Description

Scanner IP used during scan of reported host based on Plugin ID 19506 output.

Source

nessus file > ReportHost/ReportItem/[pluginID="19506"]/plugin_output

Post-processing

  1. If Plugin ID 19506 output exist extract Scanner IP from output line with Scanner IP :

  2. If Plugin ID 19506 output does not exist return:

    • No output recorded. - if plugin appeared in the report but does not return any output,

    • Check Audit Trail. - if plugin does not appeared in the report but used during scan,

    • {plugin_id} not enabled. - if plugin has not been enabled in policy used during scan.

Column type

debug

See also

Read more about plugin which source for this column on Tenable website https://www.tenable.com/plugins/nessus/19506

Nessus scan name

Nessus scan name - column details

Header name

Nessus scan name

Description

Scan name given by user during scan setting up.

Source

nessus file > Report/name

Post-processing

none

Column type

debug

Nessus file name

Nessus file name - column details

Header name

Nessus file name

Description

Nessus file name assigned during the file downloading.

Source

nessus file

Post-processing

Absolute path of the given file.

Column type

debug

Target

Target - column details

Header name

Target

Description

Name of reported host. This can be either IP or FQDN, depending on this what has been given as target.

Source

nessus file > ReportHost/[@name='name']

Post-processing

none

Column type

debug, default

Hostname

Hostname - column details

Header name

Hostname

Description

Hostname of reported host.

Source

nessus file > ReportHost/HostProperties/tag/[@name='hostname']

Post-processing

  1. Value changed to lowercase.

  2. If hostname field contains FQDN only hostname will be returned.

Column type

debug, default

FQDN

FQDN - column details

Header name

FQDN

Description

FQDN of reported host.

Source

nessus file > ReportHost/HostProperties/tag/[@name='host-fqdn']

Post-processing

Value changed to lowercase.

Column type

debug, default

IP

IP - column details

Header name

IP

Description

IP of reported host.

Source

nessus file > ReportHost/HostProperties/tag/[@name='host-ip']

Post-processing

none

Column type

debug, default

Scanned

Scanned - column details

Header name

Scanned

Description

Information if target host has been scanned.

  • yes if target host is on the list of reported hosts.

  • no if target host is not on the list of reported hosts.

Source

nessus file > Preferences/ServerPreferences/preference/[name='TARGET']/value

nessus file > ReportHost/[@name='name']

Post-processing

none

Column type

debug, default

Credentialed checks

Credentialed checks - column details

Header name

Credentialed checks

Description

Information if reported host has been scanned with credentialed checks.

Source

nessus file > ReportHost/ReportItem/[pluginID="19506"]/plugin_output

Post-processing

  1. If Plugin ID 19506 output exist extract yes or no from output line with Credentialed checks :.

  2. If Plugin ID 19506 output does not exist return no.

Column type

debug, default

See also

Read more about this plugin on Tenable website https://www.tenable.com/plugins/nessus/19506

Policy name

Policy name - column details

Header name

Policy name

Description

Policy name selected by user during scan setting up.

Source

nessus file > Policy/policyName

Post-processing

none

Column type

debug

Protocol

Protocol - column details

Header name

Protocol

Description

Exact protocol type returned by Nessus.

Source

nessus file > ReportHost/ReportItem/[@protocol]

Post-processing

none

Column type

debug, default

Service Name

Service Name - column details

Header name

Service Name

Description

Exact service name returned by Nessus.

Source

nessus file > ReportHost/ReportItem/[@svc_name]

Post-processing

none

Column type

debug, default

Port

Port - column details

Header name

Port

Description

Exact port returned by Nessus.

Source

nessus file > ReportHost/ReportItem/[@port]

Post-processing

none

Column type

debug, default

Plugin ID

Plugin ID - column details

Header name

Plugin ID

Description

Exact Plugin ID returned by Nessus.

Source

nessus file > ReportHost/ReportItem/[@pluginID]

Post-processing

none

Column type

debug, default

Plugin name

Plugin name - column details

Header name

Plugin name

Description

Exact Plugin Name returned by Nessus.

Source

nessus file > ReportHost/ReportItem/[@pluginName]

Post-processing

none

Column type

debug, default

Plugin type

Plugin type - column details

Header name

Plugin type

Description

Exact Plugin type returned by Nessus.

Source

nessus file > ReportHost/ReportItem/plugin_type

Post-processing

none

Column type

debug, default

Severity Number

Added in version v0.8.0: Upgrade now!

Severity Number - column details

Header name

Severity Number

Description

Exact Plugin Severity Number returned by Nessus.

Source

nessus file > ReportHost/ReportItem/severity

Post-processing

none

Column type

debug

Severity

Added in version v0.8.0: Upgrade now!

Severity - column details

Header name

Severity

Description

Exact Plugin Severity returned by Nessus.

Source

nessus file > ReportHost/ReportItem/severity

Post-processing

Severity is returned in human readable format, e.g. Critical, High, Medium, Low, Info using nessus file reader (NFR)’s function severity_number_to_label(severity_number)

Column type

debug, default

Risk Factor

Risk Factor - column details

Header name

Risk Factor

Description

Exact Plugin Risk Factor returned by Nessus.

Source

nessus file > ReportHost/ReportItem/risk_factor

Post-processing

none

Column type

debug, default

CVSSv2 Base Score

Added in version v0.8.0: Upgrade now!

CVSSv2 Base Score - column details

Header name

CVSSv2 Base Score

Description

Exact Plugin CVSSv2 base score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cvss2_base_score

Post-processing

none

Column type

debug

CVSSv2

Added in version v0.8.0: Upgrade now!

CVSSv2 - column details

Header name

CVSSv2

Description

Exact Plugin CVSSv2 label based on CVSSv2 base score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cvss2_base_score

Post-processing

Severity is returned in human readable format, e.g. Critical, High, Medium, Low, None using nessus file reader (NFR)’s function cvssv2_score_to_severity(cvss_score)

Column type

debug, default

CVSSv3 Base Score

Added in version v0.8.0: Upgrade now!

CVSSv3 Base Score - column details

Header name

CVSSv3 Base Score

Description

Exact Plugin CVSSv3 base score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cvss3_base_score

Post-processing

none

Column type

debug

CVSSv3

Added in version v0.8.0: Upgrade now!

CVSSv3 - column details

Header name

CVSSv3

Description

Exact Plugin CVSSv3 label based on CVSSv3 base score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cvss3_base_score

Post-processing

Severity is returned in human readable format, e.g. Critical, High, Medium, Low, None using nessus file reader (NFR)’s function cvssv3_score_to_severity(cvss_score)

Column type

debug, default

CVSSv4 Base Score

Added in version v0.8.0: Upgrade now!

CVSSv4 Base Score - column details

Header name

CVSSv4 Base Score

Description

Exact Plugin CVSSv4 base score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cvss4_base_score

Post-processing

none

Column type

debug

CVSSv4

Added in version v0.8.0: Upgrade now!

CVSSv4 - column details

Header name

CVSSv4

Description

Exact Plugin CVSSv4 label based on CVSSv4 base score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cvss4_base_score

Post-processing

Severity is returned in human readable format, e.g. Critical, High, Medium, Low, None using nessus file reader (NFR)’s function cvssv4_score_to_severity(cvss_score)

Column type

debug, default

VPR Score

Added in version v0.8.0: Upgrade now!

VPR Score - column details

Header name

VPR Score

Description

Exact Plugin VPR score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/vpr_score

Post-processing

none

Column type

debug

VPR

Added in version v0.8.0: Upgrade now!

VPR - column details

Header name

VPR

Description

Exact Plugin VPR label based on VPR score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/vpr_score

Post-processing

Severity is returned in human readable format, e.g. Critical, High, Medium, Low, None using nessus file reader (NFR)’s function vpr_score_to_severity(vpr_score)

Column type

debug, default

EPSS

Added in version v0.8.0: Upgrade now!

EPSS - column details

Header name

EPSS

Description

Exact Plugin EPSS score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/epss_score

Post-processing

none

Column type

debug

EPSS %

Added in version v0.8.0: Upgrade now!

EPSS % - column details

Header name

EPSS %

Description

Exact Plugin EPSS percentage based on EPSS score returned by Nessus.

Source

nessus file > ReportHost/ReportItem/epss_score

Post-processing

Score saved with % format using XlsxWriter.

Column type

debug, default

Plugin family

Plugin family - column details

Header name

Plugin family

Description

Exact Plugin Family returned by Nessus.

Source

nessus file > ReportHost/ReportItem/[@pluginFamily]

Post-processing

none

Column type

debug, default

Plugin file name

Plugin file name - column details

Header name

Plugin file name

Description

Exact Plugin file name returned by Nessus.

Source

nessus file > ReportHost/ReportItem/fname

Post-processing

none

Column type

debug

Plugin version

Plugin version - column details

Header name

Plugin version

Description

Exact Plugin version returned by Nessus.

Source

nessus file > ReportHost/ReportItem/script_version

Post-processing

none

Column type

debug, default

Plugin publication date

Plugin publication date - column details

Header name

Plugin publication date

Description

Exact Plugin publication date returned by Nessus.

Source

nessus file > ReportHost/ReportItem/plugin_publication_date

Post-processing

Return in format yyyy-mm-dd.

Column type

debug, default

Plugin modification date

Plugin modification date - column details

Header name

Plugin modification date

Description

Exact Plugin modification date returned by Nessus.

Source

nessus file > ReportHost/ReportItem/plugin_modification_date

Post-processing

Return in format yyyy-mm-dd.

Column type

debug, default

Plugin description

Plugin description - column details

Header name

Plugin description

Description

Exact Plugin description returned by Nessus.

Source

nessus file > ReportHost/ReportItem/description

Post-processing

none

Column type

debug, default

Solution

Solution - column details

Header name

Solution

Description

Exact Plugin solution returned by Nessus.

Source

nessus file > ReportHost/ReportItem/solution

Post-processing

none

Column type

debug, default

Plugin output

Plugin output - column details

Header name

Plugin output

Description

Exact Plugin output returned by Nessus.

Source

nessus file > ReportHost/ReportItem/plugin_output

Post-processing

none

Column type

debug, default

CVE counter

CVE counter - column details

Header name

CVE counter

Description

Number of CVE assigned to particular Plugin returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cve

Post-processing

none

Column type

debug, default

CVE number

CVE number - column details

Header name

CVE number

Description

List of CVE assigned to particular Plugin returned by Nessus.

Source

nessus file > ReportHost/ReportItem/cve

Post-processing

none

Column type

debug, default

Exploit available

Exploit available - column details

Header name

Exploit available

Description

Information if Exploit is available.

Source

nessus file > ReportHost/ReportItem/exploit_available

Post-processing

none

Column type

debug, default

Exploit code maturity

Exploit code maturity - column details

Header name

Exploit code maturity

Description

Information about Exploit code maturity.

Source

nessus file > ReportHost/ReportItem/exploit_code_maturity

Post-processing

none

Column type

debug, default

Exploit framework metasploit

Exploit framework metasploit - column details

Header name

Exploit framework metasploit

Description

Information about Exploit framework metasploit.

Source

nessus file > ReportHost/ReportItem/exploit_framework_metasploit

Post-processing

none

Column type

debug, default

Exploitability ease

Exploitability ease - column details

Header name

Exploitability ease

Description

Information if Exploitability is ease.

Source

nessus file > ReportHost/ReportItem/exploitability_ease

Post-processing

none

Column type

debug, default