Edit

Share via


Vulnerability support in Microsoft Defender Vulnerability Management

Having accurate and up-to-date information about security vulnerabilities that could threaten your organization, and information on steps to help prevent them, is essential for keeping your organization secure.

  • The Weaknesses page in Defender Vulnerability Management lists the software vulnerabilities your devices are exposed to.
  • The Recommendations page provides prioritized recommendations to help shorten the time to mitigate or remediate vulnerabilities.

If you come across missing or incorrect vulnerability information for your organization, you can use the report inaccuracy capability available for both weaknesses and recommendations to report false positives, inaccuracies, or incomplete information.

This article provides information on inaccuracies that have been reported. You can use it to determine if new or updated vulnerability support has been added, or if support isn't currently available.

Note

The tables may also include updates based on vulnerability support queries from ICMs or in response to customer requests.

The following tables present the relevant vulnerability information organized by month.

July 2025

Inaccuracy report ID Description Fix date
96976 Improved accuracy for HashiCorp Boundary 01-July-25

June 2025

Inaccuracy report ID Description Fix date
91312 Fixed inaccuracy in Zoom vulnerabilities- CVE-2018-15715, CVE-2024-27238, CVE-2024-27240 & CVE-2024-39819 10-June-25
97104 Fixed inaccuracy in Devolutions Remote Desktop Manager vulnerabilities- CVE-2024-11621, CVE-2024-8474, CVE-2025-1635 & CVE-2025-1636 10-June-25
93464 Fixed inaccuracy in Teamviewer vulnerabilities- CVE-2024-1933, CVE-2024-7479, CVE-2024-7481 & CVE-2025-0065 24-June-25
99450 Fixed inaccurate detections in MongoDB 24-June-25
98375 Fixed inaccuracy in CVE-2023-32430 24-June-25
99991 Fixed bad normalization in Postman 24-June-25
- Fixed inaccurate detections in Git-scm 24-June-25
96989 Fixed bad detections in Santesoft Sante Free PACS Server 24-June-25
- Added Microsoft Defender Vulnerability Management support for UI for ASP.NET AJAX 24-June-25
- Fixed bad normalization in Zotero 24-June-25
98813 Fixed inaccuracy in Gonitro vulnerabilities- CVE-2016-8709 and CVE-2024-35288 24-June-25

May 2025

Inaccuracy report ID Description Fix date
92212 Fixed inaccuracy in NetData vulnerabilities- CVE-2019-9834, CVE-2023-22496, CVE-2023-22497 & CVE-2024-32019 18-May-25
26534 Improved accuracy by normalizing the vendor from Dell to EMC 20-May-25
95853 Added Microsoft Defender Vulnerability Management support for RCA suite 20-May-25
99522 Fixed bad normalization in HP Security Manager 20-May-25
- Improved accuracy for OpenSSL 25-May-25
- Fixed inaccuracy in CVE-2025-22230 27-May-25
- Added Microsoft Defender Vulnerability Management support for Configuration Manager Client 27-May-25

April 2025

Inaccuracy report ID Description Fix date
86936 Defender Vulnerability Management doesn't currently support Trimble SketchUp 22-Apr-25
- Defender Vulnerability Management doesn't currently support CVE-2024-30098 22-Apr-25
- Defender Vulnerability Management doesn't currently support CVE-2025-20206 22-Apr-25
57842 Fixed inaccurate detections in Snow Inventory Agent 23-Apr-25
92184 Fixed inaccurate detections in Amazon Send to Kindle 23-Apr-25
91112 Fixed incorrect detections in Vendor- Jabra 23-Apr-25
88590 Fixed incorrect detections in Vendor- PDF Exchange Editor 23-Apr-25
90101 Fixed bad detections in Vendor- JetBrains 23-Apr-25
- Fixed inaccuracy in Mattermost Desktop vulnerability- CVE-2023-5920 24-Apr-25
- Fixed inaccuracy in OpenSSL vulnerabilities- CVE-2024-9143, CVE-2024-13176 & CVE-2024-12797 24-Apr-25
94679 Fixed inaccuracy in Secure Client by adding 1.0 as invalid version 29-Apr-25
- Fixed inaccuracy in VMware Tools vulnerabilities- CVE-2025-31334 & CVE-2024-33899 29-Apr-25
94769 Fixed inaccuracy in Micro Focus Operations Agent vulnerability- CVE-2024-0622 30-Apr-25
96209 Fixed inaccuracy in AnyDesk vulnerability- CVE-2024-52940 30-Apr-25

March 2025

Inaccuracy report ID Description Fix date
- Fixed inaccuracy in 20 Dell PowerEdge R930 vulnerabilities 04-Mar-25
83504 Fixed inaccuracy in ABB Robotware vulnerabilities - CVE-2021-22279, CVE-2024-1913, CVE-2024-1914 05-Mar-25
- Improved accuracy for new MS Teams 05-Mar-25
- Improved accuracy for Apache Tomcat 05-Mar-25
94305 Fixed inaccuracy in Devolutions Remote Desktop Manager vulnerability - CVE-2025-1193 09-Mar-25
90044 Fixed inaccuracy in OpenVPN Connect vulnerability- CVE-2024-8474 11-Mar-25
- Added Microsoft Defender Vulnerability Management support for Reload4j 11-Mar-25
- Fixed bad normalization in multiple products and vendors 19-Mar-25
84587 Fixed vulnerability detection in Glance 23-Mar-25
94464 Fixed inaccuracy in CVE-2025-22480 by removing SupportAssist CPEs 24-Mar-25
- Defender Vulnerability Management doesn't currently support CVE-2017-5703 25-Mar-25
91175 Fixed inaccuracy in CVE-2022-33633 by removing Skype CPEs 25-Mar-25

February 2025

Inaccuracy report ID Description Fix date
88640 Added accurate EOS details for .NET 7.0 03-Feb-25
85078 Fixed inaccuracy in 6 Tibco Rendezvous vulnerabilities 16-Feb-25
87231 Fixed inaccuracy in 8 Devolutions Remote Desktop Manager vulnerabilities 16-Feb-25
87691 Fixed inaccuracy in Python vulnerabilities - CVE-2024-3219 and CVE-2024-12254 by adding specific affected platform details 16-Feb-25
89362 Fixed inaccuracy in Samsung Health vulnerability- CVE-2024-34597 16-Feb-25
89977 Fixed inaccuracy in Fortinet FortiClient vulnerability - CVE-2024-50570 16-Feb-25
89239 Fixed inaccuracy in 10 Dell vulnerabilities 16-Feb-25
89577 Fixed inaccuracy in Gog Galaxy vulnerability - CVE-2023-50915 16-Feb-25
- Fixed inaccuracy in 6 HP Firmware Vulnerabilities 16-Feb-25
93100 Fixed inaccuracy in Python CVE-2024-12254 16-Feb-25
- Fixed inaccuracy in Corel WinZip vulnerability - CVE-2024-8811 23-Feb-25
- Fixed inaccuracy in Palo Alto Networks GlobalProtect 26-Feb-25
- Fixed inaccuracy in RTT PDF Explorer 26-Feb-25
89928 Fixed inaccurate detections of Python by excluding invalid paths - "incontrol.exe" and "proccess_comuniccao.exe" 26-Feb-25
86846 Updated Azul Zulu detection logic to cover additional vulnerabilities 26-Feb-25
51009 Fixed inaccurate detections of Product Names in Notion Calendar 27-Feb-25
88442 Fixed incorrect detections in Vendor- Weave Communications 27-Feb-25
- Added Microsoft Defender Vulnerability Management support for Microsoft PowerShell 7 27-Feb-25
89493 Fixed inaccurate detections in Mozilla Firefox by excluding incorrect Raw Product Names Waterfox 27-Feb-25
- Updated Dameware Mini Remote Control detection logic to cover additional vulnerabilities 27-Feb-25
85486 Fixed inaccurate detections of Product Names in Postman 27-Feb-25
92487 Fixed inaccurate detections of Product Names in Google Drive 27-Feb-25

January 2025

Inaccuracy report ID Description Fix date
83341 Fixed inaccuracy in Fortinet FortiClient vulnerability - CVE-2023-45590 08-Jan-25
- Fixed inaccuracy in Siemens Tia administrator vulnerability - CVE-2023-38533 08-Jan-25
82786 Fixed inaccuracy in Splunk vulnerability - CVE-2024-45739 08-Jan-25
- Fixed inaccuracy in Atlassian SourceTree vulnerability - CVE-2024-21697 08-Jan-25
84762 Fixed inaccuracy in Perforce Helix ALM vulnerability - CVE-2024-3995 08-Jan-25
85994 Fixed inaccuracy in Palo Alto Networks GlobalProtect vulnerability - CVE-2024-2432 08-Jan-25
- Fixed inaccuracy in Overwolf vulnerability - CVE-2024-7834 08-Jan-25
77401 Fixed inaccuracy in Mosaic Project by adding 1.0 as invalid version 13-Jan-25
80461 Fixed inaccuracy in Facebook by adding 1.0 as invalid version 13-Jan-25
- Updated detection logic to include 10 older log4j vulnerabilities:
- CVE-2020-9493
- CVE-2021-44228
- CVE-2021-4104
- CVE-2021-45046
- CVE-2021-45105
- CVE-2021-44832
- CVE-2022-23307
- CVE-2022-23305
- CVE-2022-23302
- CVE-2023-26464
13-Jan-25
69723 Fixed vulnerability detection in Adobe Campaign 14-Jan-25
83313 Fixed inaccuracy in Debian Inetutils 16-Jan-25
- Fixed inaccuracy in RedHat Kernel-debug packages 16-Jan-25
- Defender Vulnerability Management doesn't currently support Nvidia Cuda Pilot 20-Jan-25
- Fixed inaccuracy in Mattermost Desktop vulnerability- CVE-2024-39613 21-Jan-25
- Added Microsoft Defender Vulnerability Management support to BeyondTrust Privileged Remote Access 21-Jan-25
- Fixed vulnerability detection in InfluxDB 22-Jan-25
- Fixed inaccuracy in BeyondTrust Remote Support 22-Jan-25
68411 Fixed inaccurate detections in WebM Project libwebp by excluding razer file path 22-Jan-25
77999 Defender Vulnerability Management doesn't currently support these four ESET vulnerabilities:
- CVE-2020-11446
- CVE-2023-5594
- CVE-2023-3160
- CVE-2024-7400
22-Jan-25
- Updated existing normalization rule for Adobe Acrobat Reader to detect raw names with 'neopackage' 22-Jan-25
70377 Fixed incorrect detections in Microsoft Teams by excluding incorrect Raw Product Names Vida 22-Jan-25
74420 Fixed incorrect detections in Toggl Track by excluding incorrect Raw Product Names WeChat 22-Jan-25
75694 Fixed incorrect detections in McAfee by excluding incorrect Raw Product Names Drive Encryption 22-Jan-25
71402 Fixed incorrect detections in Smoothwall by excluding incorrect Raw Product Names Smoothwall Unified Client 22-Jan-25
76607 Fixed inaccuracy in Dell BeyondCompare by excluding incorrect Raw Product Names Scooter Software 22-Jan-25
- Added normalization rule for Microsoft Visual Studio 2015 to improve detection logic 22-Jan-25
79328 Fixed incorrect detections in Microsoft Monitoring Agent by excluding incorrect Raw Product Names MDOP MBAM 22-Jan-25
83419 Added Microsoft Defender Vulnerability Management support to Sinclair MakeMeAdmin 22-Jan-25
84540 Fixed incorrect detections in Apple Xcode by excluding incorrect Raw Product Names ProtoPie and RocketSim 22-Jan-25
- Fixed incorrect detections in Apache Tomcat by excluding incorrect Raw Product Names Commons Logging 22-Jan-25
61679 Defender Vulnerability Management doesn't currently support ESRI portal for Arcgis 22-Jan-25
- Defender Vulnerability Management doesn't currently support Citrix Virtual Apps & Desktops 22-Jan-25
87282 Fixed inaccurate detections in PostgreSQL by excluding 'uninstall-postgresql.exe' path 29-Jan-25

November 2024

Inaccuracy report ID Description Fix date
71766 Fixed inaccurate versions in all JetBrains PyCharm vulnerabilities 12-Nov-24
78428 Added Microsoft Defender Vulnerability Management support to TeamViewer vulnerabilities- CVE-2024-7479 and CVE-2024-7481 12-Nov-24
80922 Fixed inaccuracy in Kingsoft WPS office vulnerability - CVE-2024-7263 12-Nov-24
78951 Fixed inaccuracy in Kingsoft WPS Office vulnerability - CVE-2024-35205 12-Nov-24
- Defender Vulnerability Management doesn't currently support CVE-2006-5745 12-Nov-24

October 2024

Inaccuracy report ID Description Fix date
- Fixed inaccuracy in Microsoft LibDB & NSS vulnerabilities 03-Oct-24
76607 Fixed inaccuracy in Scooter Software 09-Oct-24
71665 Fixed inaccuracy in Hoppscotch vulnerabilities - CVE-2023-34097 & CVE-2024-27092 29-Oct-24
74054 Fixed inaccuracy in Acronis vulnerability - CVE-2022-45449 29-Oct-24
75229 Fixed inaccuracy in OpenSSL vulnerability- CVE-2024-6119 29-Oct-24
75353 Fixed inaccuracy in Primx vulnerability- CVE-2018-16518 29-Oct-24
76133 Fixed inaccuracy in Microsoft Teams vulnerability - CVE-2024-38197 29-Oct-24
79136 Fixed inaccuracy in Acronis vulnerability -CVE-2023-48678 29-Oct-24
75671 Fixed inaccurate published date in CVE-2024-26167 29-Oct-24
- Fixed inaccuracy in 4 CVEs - CVE-2016-6297, CVE-2016-6296, CVE-2016-6290 and CVE-2016-4694 by removing macOS CPEs 29-Oct-24
76179 Fixed inaccuracy in Cososys Endpoint Protector vulnerability- CVE-2012-2994 29-Oct-24

September 2024

Inaccuracy report ID Description Fix date
- Fixed inaccuracy in VMWare ESXI vulnerabilities - CVE-2024-37085 and CVE-2024-37086 01-Sept-24
58936 Fixed inaccuracy in Mirth Connect Administrator Launcher 03-Sept-24
68168 Fixed inaccurate detections in Adobe Acrobat Reader 03-Sept-24
61457 Fixed inaccurate detections in Mozilla Firefox 03-Sept-24
- Fixed inaccuracy in Microsoft Visual Studio 2015 03-Sept-24
- Fixed inaccurate detections in Microsoft Teams by excluding downloads file path 08-Sept-24
- Fixed inaccuracy in Suse Kernel-Default-Devel 09-Sept-24
73287 Fixed inaccuracy in CVE-2024-2800 09-Sept-24
- Fixed inaccuracy in Python vulnerability - CVE-2024-7592 10-Sept-24
54061 Defender Vulnerability Management doesn't currently support Flock 10-Sept-24
68097 Fixed inaccuracy in OpenSSL vulnerabilities - CVE-2024-4603, CVE-2024-4741 & CVE-2024-5535 10-Sept-24
- Fixed inaccuracy in Ubuntu vulnerability - CVE-2021-3177 10-Sept-24
71448 Fixed inaccurate published date in CVE-2024-38517 10-Sept-24
71764 Fixed inaccuracy in Palo Alto Networks vulnerability - CVE-2024-5912 10-Sept-24
69676 Fixed inaccuracy in Devolution Remote Desktop Manager vulnerabilities - CVE-2024-6354 & CVE-2024-6492 10-Sept-24
72022 Fixed inaccuracy in ExpressVPN vulnerability - CVE-2024-25728 10-Sept-24
- Fixed inaccuracy in Microsoft Edge Chromium-based vulnerability - CVE-2024-7971 10-Sept-24
71626 Fixed inaccuracy in MongoDB vulnerability - CVE-2024-7553 10-Sept-24
- Fixed inaccuracy in Cisco Anyconnect Secure Mobility Client vulnerabilities - CVE-2023-20241 & CVE-2023-20240 10-Sept-24
- Fixed inaccuracy in Plantronics vulnerability - CVE-2024-27460 10-Sept-24
72402 Fixed inaccurate detections in FileZilla by excluding server.app path 10-Sept-24
- Added Microsoft Defender Vulnerability Management support to Kusto Explorer 11-Sept-24
- Fixed bad detections in Greenshot 11-Sept-24
71056 Fixed inaccuracy in ExpressVPN 11-Sept-24
- Fixed inaccuracy in VMware vulnerabilities - CVE-2024-37085 & CVE-2024-37086 23-Sep-24
- Fixed inaccuracy in Perl vulnerability - CVE-2022-48522 24-Sep-24
- Added detection logic to include a mitigation check (specifically, for IPv6 being disabled) for CVE-2024-38063 30-Sep-24

August 2024

Inaccuracy report ID Description Fix date
59502 Fixed inaccuracy in Dell SupportAssist vulnerabilities- CVE-2023-44283 and CVE-2023-25535 06-Aug-24
60800 Fixed inaccuracy in Git SCM 06-Aug-24
61540 Fixed inaccurate detections in FileZilla by excluding fzputtygen.exe path 07-Aug-24
67107 Fixed inaccurate detections in Apache Commons Text by excluding WebHelpdesk path 07-Aug-24
61435 Fixed inaccurate detections in Notepad++ by excluding uninstall.exe path 07-Aug-24
61403 Defender Vulnerability Management doesn't currently support CVE-2024-20391 and CVE-2024-34750 07-Aug-24
- Defender Vulnerability Management doesn't currently support CVE-2013-5400 07-Aug-24
56991 Fixed inaccurate detections in Microsoft Teams 12-Aug-24
62176 Fixed inaccuracy in Imagemagick 20-Aug-24
- Fixed inaccuracy in CVE-2024-34064 and CVE-2023-3164 12-Aug-24
47545 Added Microsoft Defender Vulnerability Management support to Eclipse Temurin 12-Aug-24

July 2024

Inaccuracy report ID Description Fix date
- Fixed inaccuracy in Microsoft Visio Viewer & SDK 2016 01-July-24
61778 Fixed inaccuracy in PHP vulnerabilities - CVE-2024-4577, CVE-2024-5458 & CVE-2024-5585 05-July-24
- Fixed inaccuracy in Intel Proset Wireless vulnerabilities - CVE-2023-38417, CVE-2023-38654, CVE-2023-40536 & CVE-2023-47210 07-July-24
58642 Fixed inaccuracy in Microsoft Visual Studio Code & Progress Fiddler 10-July-24
61803 Fixed inaccuracy in CVE-2023-24592 10-July-24
- Fixed inaccuracy in CVE-2017-3010 & CVE-2017-3124 10-July-24
- Fixed inaccuracy in Veeam May vulnerabilities 10-July-24
- Fixed inaccuracy in 7-zip and Zscaler vulnerabilities - CVE-2023-31102, CVE-2023-41972, CVE-2023-41973 & CVE-2023-23463 10-July-24
62958 Fixed inaccuracy in CVE-2024-26010 10-July-24
- Defender Vulnerability Management doesn't currently support CVE-2013-5387 and CVE-2018-1595 14-July-24
60387 Fixed inaccuracy in Microsoft Teams by excluding squirrel.exe path 14-July-24
61125 Fixed inaccuracy in Lenovo Mouse Suite 17-July-24

June 2024

Inaccuracy report ID Description Fix date
55309 Fixed inaccuracy in Google One 01-June-24
- Defender Vulnerability Management doesn't currently support CVE-2020-17381 02-June-24
53810 Fixed inaccuracy in Gonitro Nitro Pro 06-Jun-24
- Fixed inaccuracy in CVE-2024-21410 10-June-24
- Fixed inaccuracy in CVE-2013-5400 13-June-24
- Defender Vulnerability Management doesn't currently support CVE-2019-3826 16-June-24
59762 Defender Vulnerability Management doesn't currently support ThinkPad p16s Gen 1 Firmware 16-June-24
56242 Fixed inaccuracy in Debian Twitter-Bootstrap3 and Postgresql-Common 16-June-24
54820 Fixed inaccuracy in Thycotic Delinea 17-June-24
57844 Fixed inaccuracy in EcorVentures NVM 17-June-24

May 2024

Inaccuracy report ID Description Fix date
- Fixed inaccuracy in CVE-2023-46838 05-May-24
- Fixed inaccuracy in CVE-2024-3094 05-May-24
- Fixed inaccuracy in Microsoft Visual Studio Code 06-May-24
- Fixed inaccuracy in CVE-2024-1403 06-May-24
- Added Microsoft Defender Vulnerability Management support to NextGen Mirth Connect 08-May-24
54538 Fixed inaccuracy in Pippo product 08-May-24
- Fixed inaccuracy in FortiClient Endpoint Management 08-May-24
- Added accurate EOS details for D-Link products 15-May-24
54786 Fixed inaccuracy in CVE-2024-31497 16-May-24
56667 Fixed inaccuracy in CURL vulnerabilities - CVE-2023-28319 & CVE-2023-28320 16-May-24
- Defender Vulnerability Management doesn't currently support CVE-2024-20666 20-May-24
56287 Fixed inaccuracy in CVE-2021-32823 20-May-24
57278 Defender Vulnerability Management doesn't currently support Lenovo ThinkPad P16 Gen1 Firmware 20-May-24
50565 Fixed inaccuracy in Adobe experience Manager Desktop 21-May-24
55190 Fixed inaccuracy in Abbyy FineReader PDF and Engine 21-May-24
49836 Fixed inaccuracy in Progress OpenEdge 26-May-24
57299 Fixed inaccuracy in CVE-2021-33214 & CVE-2020-14498 29-May-24

April 2024

Inaccuracy report ID Description Fix date
46816 Fixed inaccuracy in Telerik Progress 01-Apr-24
- Fixed inaccuracy in CVE-2024-28916 01-Apr-24
- Fixed inaccuracies in OpenSSL invalid file detections 01-Apr-24
48792 Fixed inaccuracy in CVE-2023-4895 02-Apr-24
- Fixed invalid version detections in AnyDesk 02-Apr-24
50593 Fixed inaccuracy in CVE-2023-6237 02-Apr-24
- Defender Vulnerability Management doesn't currently support CVE-2024-27088 02-Apr-24
44989 Fixed inaccuracy in Ubuntu & Debian Samba 03-Apr-24
49233 Fixed inaccuracy in Suse Kernel-devel 03-Apr-24
35636 Fixed inaccuracy in Azul Zulu 08-Apr-24
48792 Fixed inaccuracy in CVE-2021-32823 09-Apr-24
53310 Fixed inaccuracy in CVE-2020-8284 14-Apr-24
53315 Defender Vulnerability Management doesn't currently support ThinkPad P14S Gen3 15-Apr-24
49836 Fixed inaccuracies in OpenEdge invalid file detections 15-Apr-24
48996 Fixed inaccuracy in Connectwise ScreenConnect Client 16-Apr-24
- Fixed inaccurate product considerations in Apple 16-Apr-24
49565 Fixed inaccuracy in GitHub vulnerabilities - CVE-2012-2055 and CVE-2024-0727 16-Apr-24
54684 Defender Vulnerability Management doesn't currently support Lenovo ThinkPad T590 Firmware 30-Apr-24

March 2024

Inaccuracy report ID Description Fix date
- Defender Vulnerability Management doesn't currently support CVE-2023-4966 05-Mar-24
47296 Defender Vulnerability Management doesn't currently support Bitdefender Vulnerabilities - CVE-2017-17408, CVE-2017-17409 & CVE-2017-17410 05-Mar-24
45748 Fixed inaccuracy in Zscaler Client Connector 14-Mar-24
- Fixed inaccuracies in Weblogic Server invalid file detections 19-Mar-24
49672 Fixed inaccuracy in CVE-2024-0819 20-Mar-24
30583 Fixed inaccuracy in Opera Browser 21-Mar-24
- Fixed inaccuracy in Autodesk Civil 3D and AnyDesk 21-Mar-24
44979 Defender Vulnerability Management doesn't currently support CVE-2017-13774 26-Mar-24
46812 Fixed inaccuracy in Dell Supportassist 26-Mar-24
48178 Fixed inaccuracy in RuneLite 26-Mar-24
49660 Fixed inaccuracy in RSUPPORT RemoteView Agent 26-Mar-24
46828 Defender Vulnerability Management doesn't currently support OsiSoft Pi Server 26-Mar-24
48034 Defender Vulnerability Management doesn't currently support CVE-2023-35637 26-Mar-24
- Fixed inaccuracy in Adobe Acrobat Reader and Reader DC 26-Mar-24
46021 Defender Vulnerability Management doesn't currently support CVE-2023-6129 26-Mar-24
- Fixed inaccuracy in Ultraedit 26-Mar-24
- Defender Vulnerability Management doesn't currently support CVE-2023-47248 26-Mar-24
- Fixed inaccuracy in CVE-2024-20337 26-Mar-24
- Fixed inaccuracy in Python 26-Mar-24
- Fixed inaccuracy in Mitel 6920 & 6930 Firmwares 31-Mar-24

February 2024

Inaccuracy report ID Description Fix date
- Fixed inaccuracy in Snow Inventory Agent 06-Feb-24
42360 Fixed inaccuracy in GitHub vulnerabilities - CVE-2020-10519 and CVE-2021-22863 12-Feb-24
44875 Fixed inaccuracy in Zoom Meetings for macOS 14-Feb-24
45686 Fixed inaccuracy in ConnectWise Control (Formerly known as ScreenConnect) 14-Feb-24
45559 Added Microsoft Defender Vulnerability Management support to Forta GoAnyWhere MFT 14-Feb-24
- Added Microsoft Defender Vulnerability Management support to BeyondTrust Remote Support Jump Client 14-Feb-24
- Fixed inaccuracy in Ignite Real Time 14-Feb-24
- Added Microsoft Defender Vulnerability Management support to Ivanti (Pulse Secure) February released Vulnerabilities 20-Feb-24
- Defender Vulnerability Management doesn't currently support SAP GUI 21-Feb-24
46606 Defender Vulnerability Management doesn't currently support Postgresql 21-Feb-24
47700 Defender Vulnerability Management doesn't currently support Adobe Digital Editions 21-Feb-24
45297 Fixed inaccuracy in Tera Term vulnerability - CVE-2023-48995 22-Feb-24
- Fixed invalid version detections in Control & Control Client 23-Feb-24
- Added Microsoft Defender Vulnerability Management support to ConnectWise Control vulnerabilities - CVE-2024-1708 & CVE-2024-1709 23-Feb-24
43472 Added correct version details in all FortiClient CVEs 25-Feb-24
45727 Added Microsoft Defender Vulnerability Management support to Box Tools & Box for Office products 26-Feb-24
47045 Fixed inaccuracy issues in April 2021 GitLab Vulnerabilities 26-Feb-24
47174 Added accurate EOS details for SQL Server Editions 26-Feb-24
46416 Fixed inaccuracy in Oracle Kernel-uek-modules 28-Feb-24

January 2024

Inaccuracy report ID Description Fix date
30873 Fixed inaccuracy in Apache Tomcat 08-Jan-24
31664 Fixed inaccuracy in OpenSSL 08-Jan-24
30674 Fixed inaccuracy in Microsoft Visio 08-Jan-24
30674 Fixed inaccuracy in Microsoft Office 08-Jan-24
35382 Fixed inaccuracy in MySQL connector 08-Jan-24
38235 Fixed inaccuracy in Python 10-Jan-24
- Defender Vulnerability Management doesn't currently support Atlassian Confluence 10-Jan-24
- Fixed inaccuracy in JetBrains TeamCity and JetBrains IntelliJ IDEA 10-Jan-24
41860 Defender Vulnerability Management doesn't currently support Lenovo ThinkPad T480 Firmware 10-Jan-24
41049 Defender Vulnerability Management doesn't currently support Lenovo ThinkCentre M700 Firmware 10-Jan-24
25969 Defender Vulnerability Management doesn't currently support Siemens Sinec NMS 10-Jan-24
39167 Defender Vulnerability Management doesn't currently support Avaya IP Office 10-Jan-24
- Fixed inaccuracy in Palo Alto Networks - Global Protect 10-Jan-24
38038 Fixed inaccuracy in CVE-2022-3167 16-Jan-24
40269 Fixed inaccuracy in CVE-2023-46587 16-Jan-24
36968 Fixed inaccuracies in Lenovo August 2021 released Vulnerabilities 16-Jan-24
41041 Fixed inaccurate CVEs of Samsung Health 16-Jan-24
38717 Defender Vulnerability Management doesn't currently support CVE-2023-36397 17-Jan-24
43673 Defender Vulnerability Management doesn't currently support Lenovo ThinkPad T14 Gen 2 Firmware 17-Jan-24
43513 Fixed inaccuracies in OpenSSL invalid file detections 17-Jan-24
41204 Fixed inaccuracy in Affinity photo 21-Jan-24
40584 Fixed inaccuracy in Veeam One Client 21-Jan-24
40704 Fixed inaccuracy in Windows Subsystem for Linux(WSL) 21-Jan-24
43600 Fixed inaccuracy in Dell RVTools 21-Jan-24
43378 Fixed inaccuracy in Decisive Tactics Serial 21-Jan-24
43466 Fixed inaccuracy in Intel- Dynamic Tuning Technology (DTT) 21-Jan-24
35750 Fixed inaccuracy in Bitdefender Internet Security 21-Jan-24
44190 Fixed inaccuracy in CVE-2023-48670 29-Jan-24
43565 Fixed inaccuracy in WinSCP Vulnerability - CVE-2023-48795 30-Jan-24
- Fixed detection issues in Ignite Realtime Openfire 30-Jan-24
- Fixed inaccuracy in GitLab 30-Jan-24
- Added Microsoft Defender Vulnerability Management support to SAP Business Client 30-Jan-24
- Added Microsoft Defender Vulnerability Management support to SAP GUI 30-Jan-24
- Added Microsoft Defender Vulnerability Management support to PostgreSQL 30-Jan-24
- Added Microsoft Defender Vulnerability Management support to Adobe Digital Editions 30-Jan-24
- Fixed inaccuracy in Python Anaconda3 30-Jan-24

December 2023

Inaccuracy report ID Description Fix date
- Added Microsoft Defender Vulnerability Management support to SysAid Server 05-Dec-23
- Removed CVE 'TVM-0001-00000000' from Defender Vulnerability Management 05-Dec-23
33439 Fixed inaccuracies in IBM Maximo CVEs 05-Dec-23
38186 Fixed inaccuracy in CVE-2020-36160 05-Dec-23
38705 Fixed inaccuracies in November released Veeam ONE CVEs 05-Dec-23
- Added End of Support details for Intel HAXM 05-Dec-23
36856 Defender Vulnerability Management doesn't currently support Click Studios-Passwordstate 05-Dec-23
33377 Defender Vulnerability Management doesn't currently support IBM Db2 05-Dec-23
35256 Fixed inaccuracy in Techsmith Snagit 10-Dec-23
39620 Fixed inaccuracy in Adobe Audition 10-Dec-23
39542 Fixed inaccuracy in Splunk Vulnerabilities- CVE-2021-22570, CVE-2022-31799, CVE-2023-24329, CVE-2023-3817, CVE-2023-3446 19-Dec-23
39620 Fixed inaccuracy in CVE-2023-28388 19-Dec-23
35256 Fixed inaccuracy in CVE-2020-11541 19-Dec-23
41330 Fixed inaccuracy in CVE-2023-22524 19-Dec-23
- Fixed inaccuracy in Progress OpenEdge 20-Dec-23
27605 Fixed inaccuracy in Maltego 20-Dec-23

November 2023

Inaccuracy report ID Description Fix date
35498 Fixed inaccuracy in CVE-2023-38802 05-Nov-23
34698 Fixed normalization inaccuracy in Condor Team 05-Nov-23
36594 Fixed inaccurate file path detections in Cisco Secure Client 12-Nov-23
37041 Fixed inaccuracy in OpenVPN 12-Nov-23
36808 Fixed inaccurate file path detections in Zoom Meetings 15-Nov-23
33837 Defender Vulnerability Management doesn't currently support IBM Cognos Analytics 15-Nov-23
37041 Fixed inaccuracy in CVE-2021-3606 15-Nov-23
37408 Fixed inaccuracy in Kernel Module Core 15-Nov-23
37440 Added accurate End of Life details for Oracle JDK versions 26-Nov-23
- Fixed inaccuracy in CVE-2023-47246 26-Nov-23
36774 Fixed inaccuracies in October released Node.js CVEs 26-Nov-23
29643 Fixed inaccurate detections in Palo Alto Networks - Global Protect 29-Nov-23
36459 Defender Vulnerability Management doesn't currently support Siemens Simatic WinCC Runtime 29-Nov-23
36348 Fixed inaccurate file path detections in PHP 29-Nov-23

October 2023

Inaccuracy report ID Description Fix date
32689 Fixed inaccuracy in Kernel Module Extra 11-Oct-23
- Fixed inaccuracies in Exim vulnerabilities 11-Oct-23
33312 Updated End of Support details for acrobat and acrobat reader version 2017 11-Oct-23
- Fixed inaccuracy in CVE-2023-38545 12-Oct-23
32734 Fixed inaccuracy in Thunderbird 19-Oct-23
- Added Microsoft Defender Vulnerability Management support to JetBrains TeamCity 22-Oct-23
36144 Fixed inaccuracy in CVE-2023-3935 23-Oct-23
32979 Fixed inaccuracy in Bloomberg 25-Oct-23
- Fixed inaccuracy in Curl normalization 25-Oct-23
- Fixed inaccuracy in Progress - WS FTP Server 25-Oct-23
- Added Microsoft Defender Vulnerability Management support to SQL server 2022 26-Oct-23
- Added accurate End of Life details for Flash Player 30-Oct-23
32020 Fixed inaccuracy in Fiddler Everywhere 30-Oct-23
35189 Fixed inaccuracy in OpenSSL for Magnet Forensics 30-Oct-23
31139 Fixed inaccuracy in CVE-2023-3935 31-Oct-23
- Fixed inaccuracy in CVE-2023-31102 31-Oct-23
- Fixed inaccuracy in CVE-2022-43946 31-Oct-23
33380 Fixed inaccuracy in CVE-2023-32558 31-Oct-23
- Fixed inaccuracy in CVE-2014-5455 31-Oct-23

September 2023

Inaccuracy report ID Description Fix date
- Added accurate EOS details for Redis 04-Sep-23
31688 Fixed inaccuracy in CVE-2023-38831 and CVE-2023-40477 05-Sep-23
31898 Fixed Inaccuracy in CVE-2023-4373 05-Sep-23
30809 Fixed inaccuracy in FireEye path of OpenSSL 05-Sep-23
31651 Microsoft Defender Vulnerability Management doesn't currently support
CVE-2022-0778
12-Sep-23
31590 Fixed inaccuracy in Dell Command Update 12-Sep-23
30966 Microsoft Defender Vulnerability Management doesn't currently support
Lenovo ThinkPad models: X1 Yoga 3rd Gen and X13 3rd Gen
12-Sep-23
29892 Microsoft Defender Vulnerability Management doesn't currently support OpenBSI 12-Sep-23
29634 Fixed inaccuracy in CVE-2019-14568 13-Sep-23
- Microsoft Defender Vulnerability Management doesn't currently support
IBM Business Process Monitor
12-Sep-23
27242 Fixed inaccuracy in Forticlient 13-Sep-23
30770 Fixed inaccuracy in MySQL WorkBench 13-Sep-23
32471 Fixed inaccuracy in CVE-2023-40481 19-Sep-23
32114 Microsoft Defender Vulnerability Management doesn't currently support
MitsubishiElectric GX Works3
19-Sep-23
30581 Fixed inaccuracy in CVE-2022-35909 21-Sep-23
- Fixed Inaccuracy in Cisco Secure Client 21-Sep-23

August 2023

Inaccuracy report ID Description Fix date
- Fixed inaccuracy in Acrobat Reader DC 02-Aug-23
29672 Fixed inaccuracy in RedHat Kernel Devel and CentOS Kernel Devel 03-Aug-23
- Fixed inaccuracy in NetScaler Gateway Plugin 03-Aug-23
- Added Microsoft Defender Vulnerability Management support for Azul products 09-Aug-23
30082 Fixed inaccuracy in CVE-2022-43946 09-Aug-23
- Added accurate EOS details for Outlook (2010 & 2013) and Office build versions:
(2304,2305,1902,1908,2008,2202)
10-Aug-23
30002 Fixed inaccuracy in KeePass versions 10-Aug-23
- Added Microsoft Defender Vulnerability Management support to ODBC and OLEDB 10-Aug-23
29552 Fixed inaccuracy in Dell Command Update 14-Aug-23
- Fixed inaccuracy in CVE-2021-36234 22-Aug-23
- Fixed inaccuracy in CVE-2021-36283 22-Aug-23
30303 Microsoft Defender Vulnerability Management doesn't currently support
Lenovo ThinkPad models: E15-gen 4, L13, L490, T490, T490s, and T470s
29-Aug-23
29397 Fixed inaccuracy in Microsoft PowerShell 29-Aug-23
31279 Fixed inaccuracy in Azul Zulu 29-Aug-23
- Fixed inaccuracy in CVE-2021-36324 30-Aug-23

July 2023

Inaccuracy report ID Description Fix date
24162 Fixed inaccuracy in MYSQL Workbench 04-Jul-23
25736 Fixed inaccuracy in KeePass 04-Jul-23
24598 Fixed inaccuracy in Adobe Flash Player plugins 04-Jul-23
- Lenovo CVEs not currently supported by Defender Vulnerability Management:
CVE-2021-3519, CVE-2021-22499, CVE-2021-22500, CVE-2021-22514
03-Jul-23
- Added Microsoft Defender Vulnerability Management support for Arcserve UDP 05-Jul-23
- Added accurate EOS details for Log 4j versions 05-Jul-23
27379 Fixed inaccuracy in Adobe Animate 06-Jul-23
- Added Arcserve UDP affected product details in CVE-2023-26258 05-Jul-23
26391 Fixed inaccuracy in CVE-2020-26941 09-Jul-23
25245 Fixed inaccuracy in CVE-2022-40011 11-Jul-23
- Added Defender Vulnerability Management support for
Microsoft PowerBI Desktop
13-Jul-23
- Added zero-day details for CVE-2023-36884 12-Jul-23
26421 Defender Vulnerability Management doesn't currently support:
ThinkCentre M75q Gen 2 & ThinkPad l390 Firmware
14-Jul-23
23876 Fixed inaccurate recommendation in Microsoft Teams CVE-2023-24881 20-Jul-23
25969 Fixed inaccuracy in Siemens Sinec NMS 24-Jul-23
- Added EOS details for Windows Server 2012 & Windows Server 2012 R2 25-Jul-23
29096 Fixed inaccurate detection of Slack version 1.0.0.0 25-Jul-23
27941 Defender Vulnerability Management doesn't currently support
Application Performance Management
25-Jul-23
26116 Fixed inaccuracy in HP CVEs:
CVE-2021-33159, CVE-2022-26845, CVE-2022-27497, CVE-2022-29893
27-Jul-23
25809 Defender Vulnerability Management doesn't currently support:
Visio 2010, 2013, 2016 & 2019
31-Jul-23
25810 Defender Vulnerability Management doesn't currently support Project 2019 31-Jul-23
28176 Fixed inaccuracy in VMWare Tools CVE-2021-31693 31-Jul-23
29089 Fixed inaccuracy in CVE-2023-24329 31-Jul-23
28489 Fixed inaccuracy in CVE-2020-9484 31-Jul-23
28385 Fixed inaccuracy in CVE-2023-28759 31-Jul-23

June 2023

Inaccuracy report ID Description Fix date
24147 Fixed inaccuracy in CVE-2023-29338 5-Jun-23
24145 Fixed inaccurate detections in product - dbeaver 06-Jun-23
23877 Disabled Defender Vulnerability Management assessment for oracle_ bpftool 06-Jun-23
24620 Disabled Defender Vulnerability Management for synology_chat 12-Jun-23
25091 Updated inaccurate EOS date for oracle_jdk version 7 15-Jun-23
23425 Fixed inaccurate detections in mongodb & mongosh 21-Jun-23
23188 Fixed inaccurate detections in oracle: vm_virtualbox & vm_virtualbox_guest_additions 21-Jun-23
25559 Fixed inaccuracy in Halo version -1.0.0.0 22-Jun-23
25762 Fixed inaccuracy in CVE-2022-48435 28-Jun-23
25639 Fixed inaccurate file path detections in apache_commonsText 28-Jun-23
26367 Fixed inaccurate file path detections in Winrar 28-Jun-23
27146 Fixed inaccuracy in Windows 2012 r2 - KB5012170 28-Jun-23
22866 Fixed normalization issue in dell optiplex_7470_ firmware 29-Jun-23