This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 39%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJN%3C/text%3E%3C/svg%3E)
I declined an update (KB4346087) and can't get it reinstated in WSUS. I can search for it and find it, then when I try and approve it, it shows up as "Unknown" as status, and doesn't actually install on the approved servers.
I've tried reimporting it, changing its approval to approved and not approved, but still can't find it in WSUS.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
You'll need to take it up with the scanner developer. It isn't required (or possible) to install an older cumulative update. The only method to install it would be to peel back (uninstall) any later updates as first step. (note: SSUs cannot be uninstalled) Its likely the scanner definition is out of sync / out of date
--please don't forget to Accept as answer if the reply is helpful--
Thanks for the replies. I understand that 4346087 has been superseded. My issue is that my scanner is showing still vulnerable to the "Windows Speculative Execution Configuration Check" Nessus Plugin ID: 132101.
I have the registry key needed to fix the vuln. And the only way to clear the vuln in the scanner is when I install(manually) the 4346087 patch. Even on those that have the most up to date cumulative patch.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 24%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERH%3C/text%3E%3C/svg%3E)
Hi JeremiahNelson-9826,
Thanks for your posting on Q&A.
Which Windows clients you want to deploy the KB4346087 to? I found that the KB4346087 has been replaced by the other updates. Perhaps we could install the latest update instead of installing the KB4346087.
Here is a related picture for your reference:
Thanks for your time.
Regards,
Rita
If the response is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
May be moot if a later cumulative update has been install (replaced by Package details tab)
https://www.catalog.update.microsoft.com/ScopedViewInline.aspx?updateid=cd8096e0-e632-4f72-aae1-4577d102034c
--please don't forget to Accept as answer if the reply is helpful--
KB4346087 has been superseded by a ton of updates. It's from 2019-02
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4346087
Install any of the superseding updates instead. Preferably the latest update from 2020-11
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4589210
