Understanding Patch Status Indications - PAS Integrity Software Suite - 7.3 - Help - Intergraph

Integrity Help

Language
English
Product
PAS Integrity Software Suite
Subproduct
Cyber
Search by Category
Help
PAS Version
7.3

Cyber Integrity provides several patch management windows and views within those windows. These views display patch status information and indicators to help you understand the status of each patch for each asset. If a patch is found on a computer, Cyber Integrity sets the status to Patch Applied. If the patch is not found, Cyber Integrity uses several rules to determine how to set the status:

  • If the patch is applicable (by matching affected products and components found through the PAS Recon asset model data), and there is no superseding patch, the status is set to Patch Required.

  • If the patch is applicable, there are superseding patches, and the superseding patches are also not installed, the status is set to Patch Required.

  • If the patch is applicable, there are superseding patches, and those superseding patches are found to be installed, the status is set to Patch Applied.

  • If the patch is not applicable, the status is set to Patch Not Applicable.

When a patch is reported as Applied, Cyber Integrity also reports which patch identification (KB Number) is found through the PAS Recon asset model data collection. For example, as shown in the following figure, security item MS17-004 (KB3216771) is applied in 3 out of 4 computers because the component KB3212642 (the Windows 7 and 2008 R2 equivalent KB Number of MS17-004) is found.

admin-vm-config-pmview-applied

In the following example, MS12-055 is applied because the assessment found the KB2778344 (MS13-016), and MS13-016 supersedes MS12-055, so this patch is Applied through a superseding patch.

admin-vm-config-pmview-supersede