Vuln Status and the CVE-2020-1472 KB list

Topics related to MSP Builder's Core Automation Suite - views, policies, monitors, procedures, and patching.

11/30/2020 4:58:25 PM
Gravatar
Total Posts 8
Chris Visser MSP Builder Senior Solutions Engineer

Vuln Status and the CVE-2020-1472 KB list

This post is regarding the MSP Builder Notice 200921 sent on the 21st of September 2020 and relates to the Vuln Status custom field and updating the CVE-2020-1472 KB list.

We received a support request reporting that most of the machines were showing that the CVE-2020-1472 patch/s were not installed however the machines appear to be fully patched and/or did not have any of the listed patches missing.

The reason for this is because the original list was released in September 2020 and most of these patches have now been superseded by newer patches. To continue checking for the CVE-2020-1472 vulnerability the list will need to be maintained, this can be done by using the Windows Update Catalog;
https://www.catalog.update.microsoft.com/Home.aspx

The basic process involved searching for the KB number value and to see if it has been superseded or not and if it has to replace it with latest KB number as Kaseya Patch Management will not deploy superseded patch via Automatic Updates. I have updated list with the latest KB numbers from October and November;

4571719,4571702,4580345,4586827,4580382,4586834,4580347,4586845,4580347,4586845,4580347,4586845,4580346,4586830,4580346,4586830,4577668,4580390,4586793,4577668,4580390,4586793,4577671,4580386,4586786,4577671,4580386,4586786,4579311,4580364,4586781,4579311,4580364,4586781

Related sources;
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-1472