Third-Party Application Updates is designed to simplify remediation workflows and dramatically shorten the time required to address vulnerabilities (TTR). This feature is agent-based (not sensor-based) and has been optimized for lower resource utilization on assets.
It delivers clear visibility into available application updates through both customer-level and asset-level views, tying applications directly to impacted assets and prioritizing them by CVSS severity.
Much like the OS Updates (formerly Patch Management) feature, users can review application risk and monitor update status seamlessly within the platform.
Access Application Updates either via the customer/landing page or the asset details page.
Customer View (MSPs) or Landing Page
To install Applications Updates from the Customer View or landing page, perform the following steps:
1. Select a customer or on your landing page, click the App Updates icon to view available application updates.
2. A list of updates appear grouped by applications. Click an application to expand and view the list of assets that will need the update.
3. Click Select All to choose all devices or select the devices to be updated.
4. Click Create Task to create a patching task for the selected devices.
5. The Update details are provided along with the devices selected for the patch. After reviewing the information, click Create Task to apply the update. Note that all applications will be updated to the latest version regardless of the version currently installed.
6. The Application Updates Status will show that one new task was created.
7. Once the update is installed, the Application Updates Status will show when it is completed.
Asset Details View
To install Applications Updates from the Asset Details view, perform the following steps:
1. Click Assets for a Customer or on your landing page. The Asset List appears.
2. Click a single asset. The Asset Details View appears.
3. Click the App Updates icon. Click the icon.
4. A list of applications ranked by highest CVSS Severity appears along with the Total number of CVEs, the application name, the version of the application installed, and the version of the application available for installation. Depending on the application, the CISA KEV icon may display indicating that the vulnerability has been exploited “in the wild,” but not necessarily on the asset. It is recommended that these vulnerabilities are prioritized for remediation.
The Actions column provides either the action to be taken or the status of the update.
• Update denotes the application has an update available for installation.
• Pending denotes the update is in progress.
• Complete denotes the update completed.
Note: The Complete status will only remain until the next asset scan, which will clear the results entirely, until there are additional updates available.
5. Click Show All to view a complete list of CVEs associated with a specific application.
6. Click Update to update the application to the latest version.
7. Review the Update details and click Confirm Update.
8. Click Refresh on the screen. The Application Action will reflect Pending.
9. Select a customer or on your landing page, click the App Updates icon.
10. Click Task Status. A list of recently created tasks will appear. Identify the task created and expand the list to view the assets included in the application update.
Comments
0 comments
Article is closed for comments.