We know that many security teams rely on Microsoft’s patch cycle to remediate vulnerabilities in their environments. However, every month , Patch Tuesday introduces numerous vulnerabilities and their solutions that apply to many, if not nearly all, devices. Keeping up with the deployment of these patches is often challenging.
Consider this hypothetical example: a security engineer is responsible for 200 laptops on which Windows 10 is installed. On the latest Patch Tuesday, Microsoft released fixes for three new vulnerabilities. They now need to deploy and track these fixes on all devices. To do that requires a means to identify these fixes, the status of remediation, and a way to see if all of her devices have been assessed. Luckily, their organization is an InsightVM customer.
Rapid7 is happy to announce the release of the Patch Tuesday dashboard template, which gives security team members insights into the vulnerabilities introduced in this patch, the assets with these vulnerabilities, and other important details.
This dashboard includes multiple cards to achieve this.
Total Asset Trends Card
This card visualizes the total number of assets with Microsoft vulnerabilities that have changed since the most recent patch. The expanded view displays a list view of assets with the vulnerabilities introduced.
Asset Assessment Card
The Asset Assessment card displays the percentage of assets running a version of Microsoft Windows that are either assessed or not assessed for the most recent patch. The expanded view displays a list view of the assets assessed by default, but can be filtered to show those not assessed.
Top Riskiest Assets
The Top Riskiest Assets card lists the Microsoft Windows assets with the greatest risk in your environment. The expanded view of this card shows a list of assets - ordered by risk score - with vulnerabilities disclosed by Microsoft in the last patch.
Vulnerability Discovery Date by CVSS Score
The Vulnerability Discovery Date by CVSS Score card highlights when vulnerabilities disclosed by Microsoft were discovered in your environment since the most recent Patch Tuesday and ranked by CVSS Score. The expanded view of this card lists vulnerabilities disclosed by Microsoft, ordered by date published.
Vulnerabilities by Severity
The Vulnerabilities by Severity displays the percentage breakdown of the vulnerabilities disclosed by Microsoft since the most recent Patch Tuesday in your environment by severity levels. The expanded view of this card shows a list of vulnerabilities published by Microsoft in the last patch, ordered by Risk Score.
Most Common Solutions
The Most Common Solutions card shows the remediations or solutions indicated by Microsoft in the most recent Patch Tuesday that are the most frequently prescribed in your environment. The expanded view of this card lists solutions to these vulnerabilities ordered by the total number of vulnerability instances.
Number of Vulnerabilities Card
This card displays the number of vulnerabilities found in your environment disclosed by Microsoft for the most recent patch. The expanded view will show a table listing those vulnerabilities.
Exploitable Vulnerabilities Card
The Exploitable Vulnerabilities card displays the total number of Microsoft disclosed vulnerabilities in your environment and how that number is trending for the last patch. The expanded view of this card lists the individual vulnerabilities indicated by the visualization.
Exploitable Vulnerabilities by Skill Level
The Exploitable Vulnerabilities by Skill Level card provides a breakdown of vulnerabilities in your environment by the level of skill needed to exploit them. It is filtered for vulnerabilities disclosed by Microsoft. The expanded view of this card shows a list of exploitable vulnerabilities disclosed by Microsoft in the last patch, sorted by skill level.
New vs. Remediated Vulnerabilities Over Time
This card compares counts of remediated vulnerability findings, new vulnerability findings, and unchanged vulnerability findings for the most recent Patch Tuesday. The expanded view of this card shows a list of the new vulnerability findings.
Assets by Risk and Vulnerabilities
The Assets by Risk and Vulnerabilities card displays a scatter plot chart with assets ordered by risk and number of vulnerabilities. The expanded view of this card shows assets with vulnerabilities published by Microsoft since the last patch.