diff --git a/config/processors/vuln_tenable_asm.conf b/config/processors/vuln_tenable_asm.conf
index 7e7dc65f..6325606a 100644
--- a/config/processors/vuln_tenable_asm.conf
+++ b/config/processors/vuln_tenable_asm.conf
@@ -171,6 +171,9 @@ filter {
   mutate {
     remove_field => [ "tmp" ]
   }
+  split {
+    field => "[vulnerability][id]"
+  }
 }
 output {
   pipeline { send_to => [enrichments] }
diff --git a/config/processors/vuln_tenable_sc.conf b/config/processors/vuln_tenable_sc.conf
index d92d8c3f..770451bf 100644
--- a/config/processors/vuln_tenable_sc.conf
+++ b/config/processors/vuln_tenable_sc.conf
@@ -10,6 +10,9 @@ filter {
     source => "message"
     target => "tmp"
   }
+  mutate {
+    split => { "[tmp][cve]" => "," }
+  }
   mutate{
     add_field => { "[log][source][hostname]" => "%{[tmp][netbiosName]}" }
   }
@@ -117,6 +120,9 @@ filter {
   mutate {
     remove_field => [ "tmp" ]
   }
+  split {
+    field => "[vulnerability][id]"
+  }
 }
 output {
   pipeline { send_to => [enrichments] }