Updating third-party applications and fixing vulnerabilities on Kaspersky Security Center assets

You can update third-party applications (including Microsoft applications) that are installed on Kaspersky Security Center assets, and fix vulnerabilities in these applications.

First you need to create the Install required updates and fix vulnerabilities task on the selected Kaspersky Security Center Administration Server with the following settings:

• Application—Kaspersky Security Center.
• Task type—Install required updates and fix vulnerabilities.
• Devices to which the task will be assigned—you need to assign the task to the root administration group.
• Rules for installing updates:
  • Install approved updates only.
  • Fix vulnerabilities with a severity level equal to or higher than (optional setting).

    If this setting is enabled, updates fix only those vulnerabilities for which the severity level set by Kaspersky is equal to or higher than the value selected in the list (Medium, High, or Critical). Vulnerabilities with a severity level lower than the selected value are not fixed.

• Scheduled start—the task run schedule.

For details on how to create a task, please refer to the Kaspersky Security Center Help Guide.

The Install required updates and fix vulnerabilities task is available with a Vulnerability and Patch Management license.

Next, you need to install updates for third-party applications and fix vulnerabilities on assets in KUMA.

To install updates and fix vulnerabilities in third-party applications on an asset in KUMA:

1. Open the asset details window in one of the following ways:
   • In the KUMA web interface, select Assets → select a category with the relevant assets → select an asset.
   • In the KUMA web interface, select Alerts → click the link with the relevant alert → select the asset in the Related endpoints section.
   • In the KUMA web interface, select Events → search and filter events → select the relevant event → click the link in one of the following fields: SourceAssetID, DestinationAssetID, or DeviceAssetID.
2. In the asset details window, expand the list of Kaspersky Security Center vulnerabilities.
3. Select the check boxes next to the applications that you want to update.
4. Click the Upload updates link.
5. In the opened window, select the check box next to the ID of the vulnerability that you want to fix.
6. If No is displayed in the EULA accepted column for the selected ID, click the Approve updates button.
7. Click the link in the EULA URL column and carefully read the text of the End User License Agreement.
8. If you agree to it, click the Accept selected EULAs button in the KUMA web interface.

   The ID of the vulnerability for which the EULA was accepted shows Yes in the EULA accepted successfully column.

9. Repeat steps 7–10 for each required vulnerability ID.
10. Click OK.

Updates will be uploaded and installed on the assets managed by the Administration Server where the task was started, and on the assets of all secondary Administration Servers.

The terms of the End User License Agreement for updates and vulnerability patches must be accepted on each secondary Administration Server separately.

Updates are installed on assets where the vulnerability was detected.

You can update the list of vulnerabilities for an asset in the asset details window by clicking the Update link.

Page top