Patch Tuesday Updates: December 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 43062 - 2025-12 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5071501) (ESU) (CVE-2025-54100) 43063
Stop patching being deployed to computer that don't ESU license
Is there a way to stop patches being deployed to Windows 10 computers that don't have ESU licenses? From memory there was a patch for Windows 7 and 2012 R2 or something we deployed that stopped these computers receiving these updates that they can't
Endpoint Central showing application installed
Endpoint Central showing application were installed when there isn't anyone logged in, and when we look at installed programs the apps aren't listed. We have been getting these emails daily. Some say app installed, others say app uninstalled. Some have
Patch Tuesday Updates: November 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 42869 - 2025-11 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5068908) (ESU) 42870 - 2025-11 Security
Is there a way to report on ESU installed devices?
We purchased ESU licenses and installing them. Is there a way to report on ESU installed devices? To find out if we missed any devices? Thank you.
Upgrading the Windows 10 to Windows 11 (This version is not applicable for this target)
Dear Team I deployed the patch id 111894 and 111895 under single package but it shows the remark message " This version is not applicable for this target." May you please navigate me how to rectify the same.
I can't see KB5070773 in the Patch Management tool
Hi, will the KB5070773 update be available in Patch Management soon? This update resolves issues with localhost and USB devices that were caused by the previous KB5066835 update.
11.4.2528.10 agent upgrades failing
since upgrading EC console to version 11.4.2528.10 ive got about 100 windows laptops out of 500 that are stuck failing to upgrade. message says uninstall the agent and reinstall. uninstall from the console does not work, fails to uninstall the agents.
WinSCP update
the link you provided to download the newest version of WinSCP is incorrect. The link you provided is: https://excellmedia.dl.sourceforge.net/project/winscp/WinSCP/6.5.4/WinSCP-6.5.4-Setup.exe
Patch deployment - allow user to specify desired time when postponing
Hello everyone. Some of our users have said it would be ideal if when they are prompted to install updates, rather than just having the option to postpone by one or two hours, could they specify an exact time for patch installation to begin? Use cases
Patch Tuesday Updates: October 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 42594 - 2025-10 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5066876) (ESU) (CVE-2025-24052) (CVE-2025-24990)
Excluding singel computer from restart
Hi all, I have the requirement to exclude one Computer from the automated restart after updates. Normally we do the restarts on Sundays but this special occasion one PC has to run throughout the weekend. How can I do that? Thank you.
Windows 10 Extended Security Updates (ESU)
Once Windows 10 support ends, if we have machines enrolled into extended security updates from Microsoft for Windows 10 will those updates be in Endpoint Central Patch Management to deploy to these Windows 10 systems? Or will we have to manually update
Windows 11 25h2
hi MS just rollout the package for 25h2, will it be available soon ? https://support.microsoft.com/en-us/topic/kb5054156-feature-update-to-windows-11-version-25h2-by-using-an-enablement-package-4d307e2d-3028-4323-bb46-552cff491643
PATCH VULNERABILITY SEVERITY CRITERIA
Hello, Can you describe how the severity criteria is calculated ? Why some vulnerability have unrated value ? Thanks. Patrick
Disable autorestart after installed patch
Dear all, I'm pretty new to Manage Engine and getting into it. Right now we facing a problem, that the workstations are always restarting automatically. That's a huge problem, because the workstations needs to run and be rebooted manually. According to
Patch Tuesday Updates: September 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 42320 - 2025-09 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5065510) (CVE-2025-55234) (ESU) 42321 -
Self Service Portal Only Showing Succeeded
It seems when we push patches to the Self-Service Portal, it shows it Succeeded for the machines. It used to display In Progress or other status depending on if the user is installing the patches or not. It doesn't seem to be reporting if the user is
Desktop Central - HP BIOS updates
Hi, does desktop central support HP BIOS updates? I have had success with Dell but nothing on HP yet. Please advise. D.
Extended Security Updates (ESU) support for Windows Server 2012 and 2012 R2!
Hello everyone, As most of you are already aware, Microsoft ended support for Windows Server 2012 and 2012 R2 on October 10, 2023. This means that Windows Server 2012 and 2012 R2 systems in your network won't be receiving further security updates or technical
Windows Server 2012 / 2012 R2 ESU verification
Hello everyone, We previously shared an announcement about Extended Security Updates (ESU) support for Windows Server 2012 and 2012 R2. This post is a follow-up guide on verifying the installation status of the ESU license. To find more details, check
Add preconfigured package VPN Client for Mac
I am trying to deploy GlobalProtect to MacOS for pre-logon. This means that the plist file has to be modified and deployed with the setup. I have tried removing GlobalProtect manually and adding the Plist before installing, but the plist file gets written.
Patch Tuesday Updates: August 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 42112 - 2025-08 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5063927) (ESU) 42113 - 2025-08 Security
Windows 10 Enterprise to Windows 11 Enterprise upgrade failing
I can't seem to get the Windows 10 to Windows 11 Enterprise upgrade to work in Endpoint Central no matter what ISO I try. Every single ISO I've uploaded says it's a Version Mismatch. I've downloaded the ISO straight from https://www.microsoft.com/en-us/software-download/windows11
Threats & Patches Dashboard
Hi, Is it possible to exlcude some endpoint from the threats & patches dashboard? We have a large number of devices that have the AC agent installed so we can do remote management of them however we do not patch them due to the nature of what they do
Deploy a patch that's not available in the store
Hi, Wondering how I would upload a patch to be deployed to my remote machines, when the patch itself is not available in the supported patches? It's a patch for Dell systems, I have the patch download from the Dell website and would like to upload it
Another Deployment is in Progress...
A suggestion to clarify message in REMARKS filed under configuration.. I'll like to know which deployment cause this configuration to pause instead waiting or looking into multiple deployment policy to spot conflict.. Since DC know already that something
Critical SharePoint Vulnerabilities: CVE-2025-53770 and CVE-2025-53771
Critical zero-day vulnerabilities in Microsoft SharePoint on-premises servers, CVE-2025-53770 and CVE-2025-53771, have been actively exploited, with numerous servers compromised across various sectors. CVE-2025-53770 is a remote code execution vulnerability;
Patch Tuesday Updates: July 2025
Good day, everyone! Here's a list of the updates released in this month's Patch Tuesday. New OS Security Updates: 2025-07 Security Only Quality Update for Windows Server 2008 for x64-based Systems (KB5062618) (ESU) 2025-07 Security Only Quality Update
Failed to download office patch meta json with error code : 404
Hi, I have a problem distributing Microsoft Office 365 patches on Workstations. we get the below error Failed to download office patch meta json with error code : 404 Patches can be downloaded but when i press install i get the above error. And as per
Google Chrome
is there a template or a configuration to disable the auto update of Google Chrome? Glad to see that you have it available in patch management, is there a way to disable the autoupdate and let patch management handle it?
Issue with patch ID 98573
We are getting the following when desktop central is trying to push patch ID 98573: The upgrade cannot be installed by the Windows Installer service because the program to be upgraded may be missing, or the upgrade may update a different version of the program. Verify that the program to be upgraded exists on your computer and that you have the correct upgrade. This seems to be happening on desktop OS's; servers seem to install it ok. The patch is not detected as being needed by Windows Update. I'm
Disable Java Update Configuration
We have probably a handful of systems that require a specific build of JAVA for the application that is installed on them to function. We do not want to disable auto updates of java across the domain, but want an easy way to block further installation of JAVA on those systems when we push out the latest build of java.. These systems are not connected to the internet so there is no way for them to automatically update java, we have to push them out.. (these are the systems on that specific build)
Install MSU Patch
We recently had some reports of IE9 crashing after installing a MS patch KB3008923. Microsoft released an update that fixes the issue, KB3025945. However it is not an available patch in DC. I tried pushing it out as a software package but cannot get it to work. Anyone know how to push out this patch? Thanks.
Force Reboot after deploying patches
Hello all, We've recently begun to patch our Windows environment after a half year hiatus. I've noticed that a many computers are stuck at the "Retry in Progress" status and hanging on the last patch (out of 70). We began patching around October 26, and the patch configuration still shows "Retry in Progress" on those same machines. Has anyone else experienced this issue and come up with a solution? Is there any way to force a reboot of a machine so that the last patch pushes? Thanks in advance for
Desktop Central - Managed Services??
Hello all, I hope this isn't a dumb question, but is it possible to use ManageEngine Desktop Central to manage Windows Updates and App updates and Software Deployment on remote computers (not on the same LAN as the admin console)? I don't know anything about Desktop Central at all. I handle maintenance for 5 small businesses (Windows Updates, Server Updates, Antivirus Updates etc), each with about 10 computers. It's quite time consuming to stay on top of Microsoft Updates and Third Party App updates.
November 2015 Microsoft Security Updates
Hello all Three of the patches in this month's updates need to be installed in a specific order - MS15-115, -121, and -122. Will Desktop Central handle these updates in the correct order? Thanks
Patch Failure Stops Patching Process
I have noticed that when we deploy automatic patches, that when a patch in a deployment fails on a server, then the entire patch sequence for the server stops. All of the other patches are not deployed. Is there a setting that needs to be set in order for the remaining patches to deploy. This is causing issues with our compliance model and creates a situation where we have to manually go back and verify patch completion and redeploy manually. Thanks
KB3004365 not detected as missing on most computers
I have 300 computers that are missing KB3004365, but only a few are showing as missing in the Desktop Central console. In the log on the clients that are not getting the update, there is a line that reads: [ 2015-11-30 08:44:51:060 ] [ 2916 ] [INFO] GetValuesUsingWMIQuery : The required Value is given by : KB3004365 Attached are screenshots from windows update on a typical client machine, as well as the DC server console. Please advise.
Windows 10 patch download errors
Hello, The following patches couldn't be downloaded; 19173 windows10.0-kb3105211-x86.msu English May Require Failed 0.0 Dec 3, 2015 10:12 AM Patch 19173 download... Read KB 102291 windows10.0-kb3120677-x86.msu English May Require Failed 0.0 Dec 3, 2015 10:12 AM Patch 102291 downloa... Read KB 102293 windows10.0-kb3103688-x86.msu English May Require Failed 0.0 Dec 3, 2015 10:12 AM Patch 102293 downloa... Read KB Please advise! Thanks, Zahid
Next Page