O
OOrph
The vulnerability manager I use detects package versions that have either been uninstalled, or have been updated to a version that includes the vulnerability fix. The QID detection Logic is: "The detection gets the version of [package] by querying wmi query". Support have suggested I contact Microsoft for help. Would the best course of action be to remove registry entries for the older versions? In some cases, the x64 app has been updated and the x86 version has been left behind. As an example, QID 91914 - Microsoft Photos App Remote Code Execution (RCE) Vulnerability for June 2022 CVE 202
Continue reading...
Continue reading...