Patching

As you begin to build out your new Automox organization, understanding what is available, and having access to best practices will help you to define your organization patch policy standards within the Automox console.

Articles

Understanding Automox Severity Data
Where does the vulnerability severity score come from and how is it calculated? What are the effects on my patching? Learn about the following topics here: Automox severity scoring When is severity information updated? Why am I patching more? ...
Patching When the Severity Level Is Unknown
When a software patch listed in the Automox console shows a severity level of "Unknown", this generally means that Automox was unable to retrieve sufficient information to give it a rating. Additionally, some vendors announce a vulnerabili...
What Happened to "Other" Severity Packages
The possible severity score of software packages called Other will now show as Unknown .  When the severity level for a package is not scored and/or the vendor provides an insufficient amount of information, the console will now show Unkno...
How to Ensure You're Really Patching What You Think
Review severity settings of policies to make sure you are patching at the scope you want. The severity level High is new to the Automox console, which means you should check if your policies still include the level of patching you are expecting. ...
Sometimes Patch Scoring Differs Between Automox and Other Tools
What to do if there is a discrepancy between the patches Automox shows vs. another tool. It is possible that you find a difference between what patches the Automox platform shows and another tool. The reasons for this could be based on the followin...
Why a Patch Changed From Critical to High
Why does a Critical patch I just installed now show a severity of High? Severity services have migrated to CVSSv3 scoring. These are based on the CVSS as described in the National Vulnerability Database . The scoring range for Critical was previ...
Using Policy Patch Filters
The Automox patch policy gives you several filters that you can enable to control which patches are applied to your devices. For details see our user guide:  Patch Policies ...
Using the Advanced Patch Policy
Automox supports the ability to exclude particular patches or the ability to only deploy patches that match a particular query. The advanced patch policy takes this a step further by allowing you to create custom patching configurations by choosing...
What Are the Recommended Best Practices for Patching in Automox?
For Windows OS, we recommend the following policies for patching in Automox, depending on your environment. For Windows OS Main Policy: Patch All Except  Filter for: KB2267602   KB915597  Microsoft Silverlight (KB4481252) Feat...
Using a Manual Approval Policy
The manual approval policy is used to install only packages that are approved by an administrator. When you create a manual approval policy and associate it with a group, you can approve or reject packages that are available for approval. Manual A...
Patch Now: Google Chrome Zero-Day Vulnerability
Zero-day that allows for remote code execution See our Automox Blog Patch Now: Google Chrome Zero-Day Vulnerability ...
What are macOS Background Updates?
You can view or modify software update settings for macOS. Default settings on macOS enable Apple to routinely and silently push out updates to your device. You can view or modify this preference in the Software Update preference pane:  ...