CVEs VS Latest Windows Cumulative Updates

KEVIN WICAKSONO 20 Reputation points
2024-05-08T09:43:05.5633333+00:00

Hi,

Could anyone explain and provide the evidence about Latest Cumulative Update?
I have one laptop that is missing security updates from my IT while the Windows Update shows that my system is up to date. The missing updates are in CVE. I have searched all the CVE code given to me on Microsoft but it looks like I have to manually update one by one by searching the relevant KB update with each CVE. I found that Microsoft provides cumulative update each month that contained many security updates.

Question:

  1. If I install the latest cumulative updates, would it cover all the missing security updates or CVEs on my laptop?
  2. How do I know if the CVEs and missing security updates on my laptop is not shows anymore?
  3. How to generate missing security updates and CVEs from Windows?

Thank you in advance. Your support will be very appreciated.

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
11,859 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,956 questions
0 comments No comments
{count} votes

Accepted answer
  1. Wesley Li 10,570 Reputation points
    2024-05-08T15:50:36.7566667+00:00

    Hello

    I can help explain this.

    If I install the latest cumulative updates, would it cover all the missing security updates or CVEs on my laptop? Yes, Microsoft’s cumulative updates are designed to include all the security updates and non-security updates. This means that if you install the latest cumulative update, it should cover all the missing security updates or CVEs on your laptop.

    How do I know if the CVEs and missing security updates on my laptop are not shown anymore? You can use Windows PowerShell to run the Get-HotFix command. This will show you a list of all installed updates. You can then check the corresponding KB in the Microsoft website to see what CVEs are covered. Additionally, Microsoft Defender Vulnerability Management now shows security update availability information for each CVE.

    How to generate missing security updates and CVEs from Windows? You can use the Windows Update Troubleshooter to identify any missing updates. To run this tool, go to Settings > Update & Security > Troubleshoot > Additional Troubleshooters > Windows Update and click "Run the Troubleshooter". This should help identify any missing security updates and CVEs.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.