Notification

Icon
Error

SWAPGS Report

Posted: Wednesday, August 7, 2019 3:34:46 PM(UTC)
brodiemac

brodiemac

Member Original PosterPosts: 19
0
Like
I got the email about the audit report for this provided by LANSweeper. I copied the code and ran the report but it is all wrong. It shows most of my environment being vulnerable but when researching the vulnerabilities and checking machines marked as vulnerable, they all had the required patches. Anyone else seeing this?
brodiemac
#1brodiemac Member Original PosterPosts: 19  
posted: 8/7/2019 4:37:52 PM(UTC)
So I'm guessing LANSweeper uses the Get-HotFix Powershell command to get the hotfix information as the result of that command matches what is listed for these computers. Since we are using WSUS, there are several that are not listed using this command. I found this article that explains an alternate method of listing hotfixes installed this way. How would I go about integrating this command into LANSweeper to list installed hotfixes from WSUS?
Lennart
#2Lennart Member Posts: 5  
posted: 8/8/2019 6:47:15 AM(UTC)
I'm getting several clients marked as missing KB4507453 regarding to the report.
But they are updated to max, and can´t find any more windows updates.
I´m not using WSUS.
Any ideas?
/BR Lennart
Esben.D
#3Esben.D Member Administration Posts: 1,966  
posted: 8/8/2019 12:34:42 PM(UTC)
Have you checked whether the report lists assets with outdated data (look in the comments column)?
Might be best to just hit the rescan assets button in the report, just to be safe.

The data itself is taken from the Win32_QuickFixEngineering WMI class.

To check you can run get-wmiobject Win32_QuickFixEngineering in PowerShell
Bginchereau
#4Bginchereau Member Posts: 1  
posted: 8/12/2019 2:25:22 PM(UTC)
Originally Posted by: brodiemac Go to Quoted Post
I got the email about the audit report for this provided by LANSweeper. I copied the code and ran the report but it is all wrong. It shows most of my environment being vulnerable but when researching the vulnerabilities and checking machines marked as vulnerable, they all had the required patches. Anyone else seeing this?


The search criteria for the report does not include the all inclusive patches that have been put out.

EX: Win 10 build 1709 - the report looks for KB4507455, but patch KB4507465 REPLACED the previous but still includes the fix. The report shows the machine as out of date due to not looking for the updated patch.

You could go back through the report code and add these new patches, but it would be a lot easier with an update report.

Active Discussions

Lansweeper Report for Microsoft Win 7 Extended Support
by  RC62N   Go to last post Go to first unread
Last post: Yesterday at 6:46:53 PM(UTC)
Lansweeper How to make a colour coded report
by  B.Rutherford  
Go to last post Go to first unread
Last post: Yesterday at 4:27:06 PM(UTC)
Report Center All switches and the assets connected to them
by  NWSF   Go to last post Go to first unread
Last post: 12/12/2019 5:23:34 PM(UTC)
Lansweeper Report showing single asset type
by  RC62N  
Go to last post Go to first unread
Last post: 12/11/2019 10:02:41 PM(UTC)
Report Center .Net 4.5 through 4.8 report - Reg Key scanning based
by  Martin Schulz   Go to last post Go to first unread
Last post: 12/11/2019 11:55:24 AM(UTC)
Lansweeper Assets and Owner listing help
by  ssmarr5  
Go to last post Go to first unread
Last post: 12/10/2019 9:23:09 PM(UTC)
Lansweeper HPE SAS Solid State Drives failure report
by  Tommy75   Go to last post Go to first unread
Last post: 12/10/2019 8:04:05 AM(UTC)
Lansweeper Adding Owner/User information to Assets:All column report
by  ssmarr5  
Go to last post Go to first unread
Last post: 12/10/2019 12:15:01 AM(UTC)