by Ron Gula
May 31, 2011
This dashboard graphs the presence of vulnerabilities compared to installed software over the past 25 days. It can show a decrease in security issues due to applied patches.
- May 31st 2011, version 1, SecurityCenter 4.2
- Required tools - Nessus, PVS & LCE
- Download PatchTracking.zip
Many Tenable customers are often charged with demonstrating why a patch management program is or isn't working. Trending vulnerabilities by asset or by age can let you know the outcome of a patch management program, but it may not tell you the reason why there has been a change in vulnerability counts.
This dashboard component graphs medium and high vulnerabilities for the past 25 days and compares this to any Log Correlation Engine (LCE) event associated with installed software. Installing patches is a type of system change detected by the LCE.
In this screen shot, there is a slight decrease in vulnerabilities attributed to installed software over time.
This type of dashboard component can be copied several times and then filtered for different types of asset groups. This would provide at-a-glance analysis of which assets (LANs, servers, databases, etc.) have had software installations that resulted in a drop in vulnerabilities.