Comments (6)
I will try to figure out how to use this API later (I'm quite busy now).
But just a general note, in windows 10 every cumulative update contains all the previous updates, so you should be able to simply check if the build number is greater then the build number from the KB required and know from that, that those vulnerabilities are patched.
For example KB4345421 is windows build 17134.167 while KB4487017 is windows build 17134.590, I hope you see whee i'm going.
from wesng.
Have the same issue with KB4345421, the program is reporting it's missing even while I have KB4487017 installed that supersedes KB4345421.
from wesng.
Thanks for the reports! Can one of you validate the information provided by the MSRC API? In my experience on the Microsoft Catalog a certain supersedes is present, but when checking in the MSRC API, this supersedes is not listed.
See the following links for more information on how to install and use the MSRC API:
- https://github.com/Microsoft/MSRC-Microsoft-Security-Updates-API
- https://github.com/bitsadmin/wesng/blob/master/collector/collect_msrc.ps1
from wesng.
I see, thanks for the hint. I hadn't looked into Windows build number very deep. So far I only depended on the supersedes attribute, however that doesn't seem to be reliable in all cases. Going to look into it to improve accuracy of the results!
from wesng.
the CVEs.zip looks very much like "Bulletin Search" (https://www.microsoft.com/en-us/download/details.aspx?id=36982) that Microsoft stopped to release about two years ago, I used it often to track down patches, over years we indeed found out that supersedence information has to be taken with grain of salt, as data in Bulletin Search and Catalog are not always same and reality may be something different altogether
from wesng.
I just added the Report false positives page with instructions on reporting false positives. Please create a new issue using the steps described there.
from wesng.
Related Issues (20)
- Help with code HOT 2
- False positive when CVE is corrected by multiple KBs HOT 1
- Missing cve - Windows 10 HOT 2
- all impacts HOT 1
- Is there a better way for AD? HOT 2
- Allow updating definition with --definition --update HOT 1
- how you generate the definition zip file ? HOT 1
- definitions.zip problems HOT 2
- Duplicate CVEs in Report HOT 1
- Question: definitions.zip HOT 1
- -d argument always get only 1 missing patches HOT 2
- ssl error HOT 2
- wesng shows ridiculous amount of vulnerabilities HOT 1
- Add the possibility to generate our own definitions.zip HOT 3
- Some BulletinKBs are mismatched with AffectedProduct in definitions.zip.
- How to identify 22H2 Version? bacause when i run wes-eng only get 21H2 HOT 1
- When I run wesng I get missing updates when I run windows update no missing updates at all HOT 1
- Missing Patches - patches an unknown number of vulnerabilities HOT 1
- Not detecting missing KBs for Windows 11 22H2 HOT 1
- 'wes.py' is not recognized as an internal or external command, operable program or batch file. HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from wesng.