AnsweredAssumed Answered

Replacement report for 'Critical Patch Report'

Question asked by Michael Scheidell on Apr 4, 2018
Latest reply on Apr 13, 2018 by DMFezzaReed

The current 'Critical Patch Report' mixes vulnerabilities, with old patches, with old vulnerabilities and can't be used for this (it does some odd reverse chain linking, then forward linking of patches), ie: reports 3 year old 'missing' patches that were actually patched 3 years ago because of a new patch...)

 

I am specifically looking to be able to do a monthly report for management, listing the top 10 vulnerabilities, based on how many vulnerabile endpoints.

 

ie:  apply these ten patches/fix these 10 vulnerabilities and you will fix xx% of the vulnerabilities.

today, I start with the critical patch report, sort by severity and count, and then, MANUALLY VERIFY EACH AND EVERY ONE OF THEM, because of the way the patch report does it reporting .

 

any ideas?

 

Vendor ID

Risk

 Title

 Hosts

MS15-011(1)

5

Microsoft Group Policy Remote Code Execution Vulnerability (MS15-011)

119

QID 105489

5

Microsoft Sync Framework Service Pack 1 Not Installed

69

VMSA-2017-0015(2)

5

VMware ESXi 6.0 Patch Release ESXi600-201706101-SG, ESXi600-201706102-SG, ESXi600-201706103-SG Missing (KB 2149954) (KB 2149961) (KB 2149970))

16

VMSA-2017-0008

5

VMware Horizon View Multiple Vulnerabilities.(VMSA-2017-0008)

7

KB326585

5

Microsoft Office 2000 Service Pack 3 Missing

6

 

KB 4053440

4

Microsoft Office Dynamic Data Exchange (DDE) Vulnerability (KB 4053440)

771

MS16-065

4

Microsoft Windows .NET Framework Information Disclosure Vulnerability (MS16-065)

209

cisco-sa-20170726-anidos

4

Cisco IOS and IOS XE Autonomic Networking Infrastructure Denial of Service Vulnerability (cisco-sa-20170726-anidos)

34

QID: 91415

4

Microsoft Windows Security Update December 2017

19

VMSA-2016-0023(2)

4

VMware ESXi 6.0.0 Patch Release ESXi600-20161100 Missing (KB2146984)

16

Outcomes