Patch Tuesday Updates: August 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 42112 - 2025-08 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5063927) (ESU) 42113 - 2025-08 Security
WINRAR 7.13 (X64) Security Vulnerability– Immediate Patch Advisory
Hello everyone ! A high-risk security flaw has been identified in WinRAR version 7.13 (x64) that could let attackers execute malicious code via specially crafted archive files. Systems with this version installed and not updated are at immediate risk.
Critical SharePoint Vulnerabilities: CVE-2025-53770 and CVE-2025-53771
Critical zero-day vulnerabilities in Microsoft SharePoint on-premises servers, CVE-2025-53770 and CVE-2025-53771, have been actively exploited, with numerous servers compromised across various sectors. CVE-2025-53770 is a remote code execution vulnerability;
email server setup
how do i setup email server settings in vulnerability manager plus . does it require business emails only or gmail accounts also could be used.
CVE-2025-48818: Security feature bypass vulnerability
CVE-2025-48818 is a security feature bypass vulnerability in Windows BitLocker. The flaw stems from a time-of-check to time-of-use (TOCTOU) race condition, which could allow an attacker with physical access to a target system to bypass BitLocker encryption
Patch Tuesday Updates: July 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-07 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5062618) (ESU) 2025-07 Security Only Quality Update
Password change interval
I have a password change interval set on my domain that is greater than 45 days but is not out of compliance for my security policy. How do I change this server setting so it does not flag every one of my servers as highly vulnerable? -Michael
Red Hat Linux Patching Alert: Update Nomination Settings Before July 7, 2025
Hello everyone ! Starting July 7, 2025, Red Hat will no longer allow logins using an email address. If your Red Hat nomination currently uses an email ID instead of a username, this change could affect patch deployment and related automation workflows.
Agent installation on Work From Home workstations
We are implementing Vulnerability Manager for our corporate LAN, which contains ~30 servers and ~15 workstation virtual machines, all of which are on the same local infrastructure and joined to our local active directory on premises (which syncs to our
Scheduled Remote Shutdown Email Notification to admins
Can your team add an email notification option for the scheduled remote shutdown? From an administrator perspective when we perform our daily system audits, we currently get email notifications sent to us confirming the reboot, which we have done using
Post deployment forced reboot without notification/prompting
When creating a deployment policy for patching, we are able to force reboot pre-deployment without notification to the user. However, I am not seeing the same option for post-deployment reboot. Please advise. We do not want users being prompted of this,
Patch Tuesday Updates: June 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-06 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5061072) (ESU) (CVE-2025-33073) 2025-06 Security Only
CVE-2025-26633: The Actively Exploited Zero-day Vulnerability
CVE-2025-26633, a zero-day vulnerability in the Microsoft Management Console (MMC) , gives attackers the keys to bypass security features and unleash malicious code on unsuspecting systems by convincing a victim to click on a malicious link or open a
Mozilla releases security updates for Firefox, Firefox ESR and Thunderbird for several vulnerabilities.
Good day everyone ! Mozilla has released security updates for Firefox 139.0, Firefox ESR 128.11.0 , 115.24.0 and Thunderbird 139.0 and 128.11.0. The details of the vulnerabilities fixed are as follows: Platform CVE ID Vulnerability Impact Firefox 139
Patch Tuesday Updates: May 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-05 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5058429) (ESU) (CVE-2025-30397) (CVE-2025-32706) (CVE-2025-32701)
Prevent Windows 10 to 11 Upgrades
I do not want to upgrade my clients from Win10 to Win11. We currently have other tools for that and I have a requirement where some of my machines CANNOT be upgraded accidentally. Using Vulnerability Manager Plus, is there something I can do to help ensure
Google fixes high severity and critical severity vulnerabilities in its Chrome 135.0.7049.95/.96 Stable Channel update
Chrome Stable Channel has been updated to 135.0.7049.95/.96 for Windows,Mac and 135.0.7049.95 for Linux. This update comes with 2 security fixes. The details of the vulnerability fixed are mentioned below: CVE-ID VULNERABILITY SEVERITY CVE-2025-3619 Heap-based
Patch Tuesday Updates: March 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-03 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5053995) (ESU) (CVE-2025-24991) (CVE-2025-24985) (CVE-2025-24993)
Patch Tuesday Updates: April 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-04 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5055596) (CVE-2025-29824) (ESU) 2025-04 Security Only
Do we have the option to scan the Azure applications_Collebra
Dear Team, The customer is using Azure, which hosts multiple applications. The question here is whether Vulnerability Manager Plus will scan these applications and provide us with the vulnerability report. Please provide clarification on this. Regards
Google fixes several high severity vulnerabilities in its Chrome 134.0.6998.117/118 Stable Channel update
Chrome Stable Channel has been updated to 134.0.6998.117/118 for Windows and Mac (release in progress). This update comes with 1 security fix. The details of the vulnerability fixed are mentioned below: CVE-ID VULNERABILITY SEVERITY CVE-2025-2476 Use
Deprecating Patch DB sync for Vulnerability Manager Plus 11.2.2328.1 and below
Hello folks! The end of an era is often a time for growth and progress. That being said, to enhance our workflow and continue to provide the latest features and patch updates in the product, we are deprecating patch database sync in Vulnerability Manager
Vulnerability Manager Plus versus Endpoint Central with Vulnerability Management Add On
Hi, Is there a list somewhere of the differences between Vulnerability Manager Plus and Endpoint Central with Vulnerability Management Add On? We're already running Endpoint central with the add on and have just installled a trial of Vulnerability Manager
Expanding BIOS Patching: Now Supporting HP Devices in Vulnerability Manager Plus!
Good day folks ! We’re excited to introduce a significant enhancement to our patch management capabilities! Vulnerability Manager Plus now extends BIOS patching support to HP devices, alongside our existing Dell BIOS patching support, ensuring comprehensive
Patch Tuesday Updates: February 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-02 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5052072) (ESU) (CVE-2025-21418) 2025-02 Security Only
Windows BitLocker Vulnerability Exposed: Secure Your Systems Now!
Hello folks ! A critical flaw, CVE-2025-21210, has been identified in Windows BitLocker, affecting its AES-XTS encryption mode. This vulnerability enables attackers with physical access to devices to manipulate encrypted data, causing sensitive information
Simplified Red Hat Patch Management Workflow: Key Updates And Actions Needed
Good day folks ! We are excited to announce enhancements to the Red Hat Patch Management workflow in our product, designed to streamline and automate key processes for our enterprise customers. What’s New? Simplified Machine Nomination and Account Configuration:
[Zero-day] Microsoft's January 2025 Patch Tuesday fixes 8 zero-day vulnerabilities
Hello folks, This is to notify you that 8 zero-day vulnerabilities have been fixed in this month's Patch Tuesday. Below, you can find the CVE and Patch ID details. Vulnerable Component Impact CVE ID Windows Hyper-V NT Kernel Integration VSP Elevation
Patch Tuesday Updates: January 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-01 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5050061) (ESU) 2025-01 Security Only Quality Update
Client Initiated Scans
Is there a way to trigger a patch scan from the client side? (Maybe a batch file or a command they could run?) I think I have many users that aren't online long enough to complete a patch scan. I was thinking that when they call into our User Support
Windows ARM Patch Support Now Available in Build 2325 Series
Hello folks! We are pleased to announce that our product now supports Windows ARM patches, starting from the build 2325 series. This enhancement ensures full compatibility with Windows ARM-based systems, providing seamless patch management and optimized
Patch Tuesday Updates: December 2024
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2024-12 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5048710) (ESU) (CVE-2024-49138) 2024-12 Security
[Zero-day] Microsoft's December 2024 Patch Tuesday fixes 1 zero-day vulnerability
Hello folks, This is to notify you that 1 zero-day vulnerability have been fixed in this month's Patch Tuesday. Below, you can find the CVE and Patch ID details. VULNERABLE COMPONENT IMPACT CVE ID Windows Common Log File System Driver Elevation of Privilege
Upgrade to the latest Secure Gateway Server Build!
Hello everyone, We have updated Vulnerability Manager Plus's Secure Gateway Server with a few enhancements. Please download the latest Secure Gateway Server here. You can find out more about the enhancements made in the build update (90111) on this readme
Vulnerability Manager Plus cloud version
Hi, Is there any plans to offer cloud version of Vulnerability Manager Plus? I'm currently using Patch Manager Plus with the monthly payment option. I was hoping to migrate to Vulnerability Manager Plus.
Patch Tuesday Updates: November 2024
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2024-11 Security Monthly Quality Rollup for Windows Server 2008 for x64-based Systems (KB5046661) (ESU) (CVE-2024-43451) (CVE-2024-49019)
Microsoft Windows 2022 Servers Unexpectedly Upgrades to 2025
The issue appears to stem from KB5044284, an update released during October's Patch Tuesday. While this update is intended for Windows Server 2025, Microsoft's patch management systems have misclassified it, leading to it being treated as an OS upgrade
Google fixes several high severity vulnerabilities in its Chrome 130.0.6723.91/.921 Stable Channel update
Hello everyone, Chrome Stable Channel has been updated to 130.0.6723.91/.921 for Windows and Mac, and 130.0.6723.91 for Linux. This update comes with 2 security fixes. The details of the vulnerability fixed are mentioned below: CVE-ID VULNERABILITY SEVERITY
Upgrade to the latest Secure Gateway server build!
Hello everyone, We have updated Vulnerability Manager Plus Secure Gateway Server with a few enhancements. Please download the latest Secure Gateway Server here You can find out more about the enhancements made in the build update (90110) on this readme
Trialling Vulnerability Manager +
We are trialling Vulnerability Manager Plus. To comply with Cyber Essentials we need to ensure that we update all software within 14 days of release, particularly if: Fixes vulnerabilities labelled by the vendor as ‘critical’ or ‘high risk’ Addresses
Next Page