On December 31, 2023, Tenable’s Nessus vulnerability scanner agents experienced a significant outage due to issues linked to differential plugin updates in versions
10.8.0 and
10.8.
1. This incident has raised concerns among cybersecurity professionals and IT teams globally—affecting users across the Americas, Europe, and Asia. In response to this disruption, Tenable has released a critical update, Nessus Agent version
10.8.2, designed to restore functionality for those impacted. In this article, we will explore the details surrounding this outage, the necessary steps for users to upgrade and regain protection, and the wider implications of keeping security tools up-to-date in an ever-evolving digital landscape.
Key Takeaways
- Users of Nessus vulnerability scanner agents must upgrade to version
10.8.2 or downgrade to
10.7.3 to regain functionality after the recent outage. - A plugin reset is necessary if agent profiles were used during the software changes.
- Tenable is addressing the issue and plans to resume plugin feed updates to facilitate service restoration.
Overview of the Nessus Agent Outage
In the rapidly evolving landscape of cybersecurity, product reliability is paramount, and Tenable’s recent challenges with its Nessus agent have underscored this critical need. On December 31, users of the Nessus vulnerability scanner faced disruptions as agents became unresponsive, a situation traced back to problematic differential plugin updates in the latest versions,
10.8.0 and
10.8.1. This outage has impacted a diverse user base spanning the Americas, Europe, and Asia, drawing attention to the potential ramifications of software vulnerabilities on organizational cybersecurity postures. In response to this incident, Tenable has proactively addressed the issue by launching the Nessus Agent version
10.8.2, which aims to restore functionality to those affected. However, customers whose agents remain offline are required to navigate a manual upgrade path to this new version or revert to the previous stable version,
10.7.3. Importantly, if agent profiles were utilized during these transitions, a plugin reset becomes a necessary step to ensure smooth operations. Looking ahead, Tenable has indicated plans to resume plugin feed updates soon, which will enable users to download the latest security enhancements. This incident is reminiscent of a previous outage resulting from a faulty CrowdStrike update, highlighting the vulnerability of critical services to software-related disruptions. For users of Nessus, keeping software updated and maintaining awareness of these changes is essential for sustaining robust security measures.
Steps for Users to Upgrade and Restore Functionality
To upgrade and restore functionality of the Nessus vulnerability scanner, users should follow a series of straightforward steps. First, begin by downloading the Nessus Agent version
10.8.2 from the official Tenable website. Ensure that you have administrative privileges on your machine to execute the installation. Once downloaded, run the installer for version
10.8.2 and follow the on-screen instructions to complete the upgrade process. If you prefer or need to revert to an earlier version, locate the
10.7.3 installer and execute a downgrade. After either upgrade or downgrade, it’s crucial to reset the plugins, especially if agent profiles were applied during the updates. This can typically be done within the Nessus user interface by navigating to the settings and selecting the appropriate reset option. Lastly, stay informed about Tenable’s communications as they plan to resume plugin feed updates soon, ensuring that you can access the latest security plugins and enhancements. Regularly checking for updates and following best practices will help maximize the effectiveness of your Nessus agents.