This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi everyone,
I'm looking for assistance with a KQL script to count vulnerabilities in Microsoft Defender over a specific time period. I've tried the following script, but I'm encountering some issues:
DeviceTvmSoftwareVulnerabilities
| where Timestamp >= datetime(2024-01-01) and Timestamp < datetime(2024-02-01)
| summarize VulnerabilityCount = count() by DeviceId, VulnerabilityTitle
However, I'm getting errors regarding the "Timestamp" column.
Additionally, I've noticed that the reports in Microsoft Defender do not include a specific report to show the total number of vulnerabilities over a period of time. If anyone has any insights or suggestions on how to generate this report, I would greatly appreciate it.
Thank you in advance for your assistance!
Best regards,
*****Moved from <Microsoft 365 and Office / Unknown / Windows
Processes in Microsoft 365 for setting up Office apps, redeeming product keys, and activating licenses.
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.
Any answers here? This has to be the worst metrics from any vuln scanner ever! How to get this "Exposure Score" over say 6 months?
DeviceTvmSoftwareVulnerabilities doesn't have a time* field. Where is a link for how to get KPI's for MDE Vulns and Defender for Cloud
Dear Sergio Vargas3,
Good day! Thank you for posting to Microsoft Community. We are happy to assist you.
I do understand your query here but, as your query related to Microsoft Defender and since Microsoft has specific support channel resource for certain different support scope and attributes, we are belong to Microsoft Forum Community mainly focused on Micrsoft 365 Exchange online only. Therefore, we provide some limited knowledge about some aspects of Microsoft Defender related scenarios. For your concern, we have a dedicated team with special expertise in Microsoft Defender queries, so would you mind to connect and place your query on our dedicated Microsoft Defender for Cloud - Microsoft Q&A? We believe they will give you accurate and efficient solution for your concern.
Thank you for your precious time and understanding. For other concerns, please do not hesitate to add your post in the Microsoft Community Team.
Stay safe and healthy. Have a nice day!
Sincerely,
Libeamlak | Microsoft Community Moderator
This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.
Comments have been turned off. Learn more