No more typing reviews! Try our Samantha, our new voice AI agent.

Cisco Vulnerability Management (formerly Kenna.VM) vs Tenable Vulnerability Management comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cisco Vulnerability Managem...
Ranking in Risk-Based Vulnerability Management
23rd
Average Rating
8.0
Reviews Sentiment
6.8
Number of Reviews
1
Ranking in other categories
Cisco Security Portfolio (11th)
Tenable Vulnerability Manag...
Ranking in Risk-Based Vulnerability Management
5th
Average Rating
8.2
Reviews Sentiment
6.9
Number of Reviews
46
Ranking in other categories
Vulnerability Management (10th), Patch Management (14th)
 

Mindshare comparison

As of July 2026, in the Risk-Based Vulnerability Management category, the mindshare of Cisco Vulnerability Management (formerly Kenna.VM) is 2.2%, down from 2.4% compared to the previous year. The mindshare of Tenable Vulnerability Management is 7.0%, down from 10.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Risk-Based Vulnerability Management Mindshare Distribution
ProductMindshare (%)
Tenable Vulnerability Management7.0%
Cisco Vulnerability Management (formerly Kenna.VM)2.2%
Other90.8%
Risk-Based Vulnerability Management
 

Featured Reviews

AshishPaliwal - PeerSpot reviewer
Self-employed at Self-employed
Offers contextual prioritization and risk-based remediation of vulnerability
An improvement would be some sort of an integration with any GRC suite. There are a lot of GRC suites available, like Archer, MetricStream, Rsam, Protiviti, for example. So how would a solution like this work if my company has already invested thousands or maybe millions in a GRC solution? Do I still need it and how does it fit into an existing SAP environment? There could be interoperability, having more data sources, integrating Splunk, Qualys, FireEye, Rapid7, Carbon Black. I'm sure all that can be done to an extent, with a little more insight and a little more accuracy on the industry numbers and trends. I'd like the solution to offer any sort of assistance in any way with the remediation part, not just identification of vulnerability risk, and that is second.
Chethan Gowda - PeerSpot reviewer
Windows Security Patching Operation III (Cyber Operations) at CBTS
Have maintained accurate vulnerability scans and gained actionable remediation insights across thousands of servers
Tenable Vulnerability Management agents are very lightweight, and the results we get are very accurate. The solutions they provide to us, assuming if one vulnerability exists, there will be a solution. The resolution they give us in wording will be the best solution. The exploit rates and the reports we get provide a lot of information, making it very easy for us to verify.The main benefit of integration with Tenable Vulnerability Management is that there will be no lack of missing vulnerabilities when it comes to the patching environment. That is one of the key aspects of why we have integrated Tenable to our patching tools. It has a vast capacity of pushing the data to our tools due to its capability and compatibility. That is also one of the reasons why we are using Tenable Vulnerability Management.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The risk context of any vulnerability is a valuable feature."
"The risk context of any vulnerability is a valuable feature; that is what it is used for and then data from different sources can be fed into it, and they have good dashboards, risk meters, and virtualization."
"The product offers good performance, with no bugs or glitches, and it doesn't crash or freeze."
"It is very stable, and it is updated periodically by adding new vulnerabilities."
"By making different resources available for sharing among users and groups, Tenable.io provides endless possibilities for creating customized workflows for vulnerability management programs, regardless of any of the numerous regulatory or compliance drivers that demand keeping your business secure."
"The solution is quite friendly."
"The solution is easy to use and configuration is smooth with no complexities."
"The ease of use in terms of scanning assets is valuable."
"It helps us create remediation projects and assign the console’s responsibility to specific engineers."
"The ease of use in terms of scanning assets is valuable, and it has a diverse checklist when it comes to vulnerability databases."
 

Cons

"An improvement would be some sort of an integration with any GRC suite."
"More flexibility is required compared to other solutions."
"The one drawback that we have found is the reports."
"The solution seems to focus too much on enterprises, and they really need a product that works for SMBs."
"An area of improvement for this solution is being able to customize the dashboard. For example, the dashboard does not allow us to view a previous months vulnerability results alongside current results to make comparisons."
"I'm not satisfied with the reporting structure."
"The shortcoming of the solution that needs improvement is related to its capability to do vulnerability assessments on applications."
"Another area of improvement is customer service and support. Tenable needs to include support in the pricing/license. Currently, they push clients to get support from partners or channel distributors, who often charge a lot."
"The product is a bit expensive."
 

Pricing and Cost Advice

"I think the pricing is based on the number of endpoints, so it's more subscription-based."
"The total cost we pay for this solution is over 45K. This is for a large education organization."
"Tenable.io is not known for being a cheap product."
"Compared to other VM solutions, Tenable.io Vulnerability Management is expensive."
"The solution is not too expensive."
"Tenable charges around $40 per device."
"The tool is reasonably priced."
"The cost is determined by the number of endpoints, which is approximately one dollar per endpoint."
"Yearly payments are to be made toward the licensing cost of the product. It is neither a cheap nor an expensive product."
report
Use our free recommendation engine to learn which Risk-Based Vulnerability Management solutions are best for your needs.
904,054 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Retailer
15%
Computer Software Company
14%
Construction Company
10%
Financial Services Firm
10%
Financial Services Firm
15%
Manufacturing Company
10%
Computer Software Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise3
Large Enterprise22
 

Questions from the Community

Ask a question
Earn 20 points
What's the difference between Tenable Nessus and Tenable.io Vulnerability Management?
Tenable Nessus is a vulnerability assessment solution that is both easy to deploy and easy to manage. The design of the program is such that if a company should desire to handle the installation t...
What needs improvement with Tenable.io Vulnerability Management?
In my opinion, I would like to see additional functions and improvements. Something related to AI would be a good addition.
What advice do you have for others considering Tenable.io Vulnerability Management?
I have purchased a license directly from Tenable, so I am working directly with Tenable and not through partners. My overall review rating for Tenable Vulnerability Management is eight.
 

Also Known As

Kenna.VM, Kenna Security, Kenna, Kenna Security Platform
Tenable.io
 

Overview

 

Sample Customers

TransUnion
Global Payments AU/NZ
Find out what your peers are saying about Qualys, Horizon3.ai, Tenable and others in Risk-Based Vulnerability Management. Updated: June 2026.
904,054 professionals have used our research since 2012.