Merge branch 'main' into mcp-link

batamig · web-flow · commit 3a303b6cb99f · 2025-12-01T15:36:54.000+02:00
diff --git a/defender-vulnerability-management/defender-vulnerability-management-capabilities.md b/defender-vulnerability-management/defender-vulnerability-management-capabilities.md
@@ -55,22 +55,22 @@ The following table summarizes the availability of Defender Vulnerability Manage
 
 |Capability| Defender for Endpoint Plan 2 includes the following core Defender Vulnerability Management capabilities| Defender Vulnerability Management Add-on provides the following premium Vulnerability Management capabilities for Defender for Endpoint Plan 2 | Defender Vulnerability Management Standalone provides full Defender Vulnerability Management capabilities for any EDR solution |
 |:----|:----:|:----:|:----:|
-|[Device discovery](/defender-endpoint/device-discovery)|âœ”|-|âœ”|
-|[Device inventory](/defender-endpoint/machines-view-overview)|âœ”|-|âœ”|
-|[Vulnerability assessment](tvm-weaknesses.md)|âœ”|-|âœ”|
-|[Configuration assessment](tvm-microsoft-secure-score-devices.md)|âœ”|-|âœ”|
-|[Risk based prioritization](tvm-security-recommendation.md)|âœ”|-|âœ”|
-|[Remediation tracking](tvm-remediation.md)|âœ”|-|âœ”|
-|[Continuous monitoring](/defender-endpoint/configure-vulnerability-email-notifications)|âœ”|-|âœ”|
-|[Software inventory](tvm-software-inventory.md)|âœ”|-|âœ”|
-|[Software usages insights](tvm-usage-insights.md)|âœ”|-|âœ”|
-|[Security baselines assessment](tvm-security-baselines.md)|-|âœ”|âœ”|
-|[Block vulnerable applications](tvm-block-vuln-apps.md)|-|âœ”|âœ” **see note**|
-|[Browser extensions assessment](tvm-browser-extensions.md)|-|âœ”|âœ”|
-|[Digital certificate assessment](tvm-certificate-inventory.md)|-|âœ”|âœ”|
-|[Network share analysis](tvm-network-share-assessment.md)|-|âœ”|âœ”|
-|[Hardware and firmware assessment](tvm-hardware-and-firmware.md)|-|âœ”|âœ”|
-|[Authenticated scan for Windows](windows-authenticated-scan.md)|-|âœ”|âœ”|
+|[Device discovery](/defender-endpoint/device-discovery)|Supported|-|Supported|
+|[Device inventory](/defender-endpoint/machines-view-overview)|Supported|-|Supported|
+|[Vulnerability assessment](tvm-weaknesses.md)|Supported|-|Supported|
+|[Configuration assessment](tvm-microsoft-secure-score-devices.md)|Supported|-|Supported|
+|[Risk based prioritization](tvm-security-recommendation.md)|Supported|-|Supported|
+|[Remediation tracking](tvm-remediation.md)|Supported|-|Supported|
+|[Continuous monitoring](/defender-endpoint/configure-vulnerability-email-notifications)|Supported|-|Supported|
+|[Software inventory](tvm-software-inventory.md)|Supported|-|Supported|
+|[Software usages insights](tvm-usage-insights.md)|Supported|-|Supported|
+|[Security baselines assessment](tvm-security-baselines.md)|-|Supported|Supported|
+|[Block vulnerable applications](tvm-block-vuln-apps.md)|-|Supported|Supported **see note**|
+|[Browser extensions assessment](tvm-browser-extensions.md)|-|Supported|Supported|
+|[Digital certificate assessment](tvm-certificate-inventory.md)|-|Supported|Supported|
+|[Network share analysis](tvm-network-share-assessment.md)|-|Supported|Supported|
+|[Hardware and firmware assessment](tvm-hardware-and-firmware.md)|-|Supported|Supported|
+|[Authenticated scan for Windows](windows-authenticated-scan.md)|-|Supported|Supported|
 
 > [!NOTE]
 > If you're using the standalone version of Defender Vulnerability Management, to use the "block vulnerable applications" feature, Microsoft Defender Antivirus must be configured in active mode. For more information, see [Microsoft Defender Antivirus Windows](/defender-endpoint/microsoft-defender-antivirus-windows#comparing-active-mode-passive-mode-and-disabled-mode).
@@ -92,20 +92,20 @@ The following table lists the availability of Defender Vulnerability Management
 
 |Capability|Defender For Servers Plan 1|Defender For Servers Plan 2|
 |:----|:----:|:----:|
-|[Vulnerability assessment](tvm-weaknesses.md)|âœ”|âœ”|
-|[Configuration assessment](tvm-microsoft-secure-score-devices.md)|âœ”|âœ”|
-|[Risk based prioritization](tvm-security-recommendation.md)|âœ”|âœ”|
-|[Remediation tracking](tvm-remediation.md)|âœ”|âœ”|
-|[Continuous monitoring](/defender-endpoint/configure-vulnerability-email-notifications)|âœ”|âœ”|
-|[Software inventory](tvm-software-inventory.md)|âœ”|âœ”|
-|[Software usages insights](tvm-usage-insights.md)|âœ”|âœ”|
-|[Security baselines assessment](tvm-security-baselines.md)|-|âœ”|
-|[Block vulnerable applications](tvm-block-vuln-apps.md)|-|âœ”|
-|[Browser extensions assessment](tvm-browser-extensions.md)|-|âœ”|
-|[Digital certificate assessment](tvm-certificate-inventory.md)|-|âœ”|
-|[Network share analysis](tvm-network-share-assessment.md)|-|âœ”|
-|[Hardware and firmware assessment](tvm-hardware-and-firmware.md)|-|âœ”|
-|[Authenticated scan for Windows](windows-authenticated-scan.md)|-|âœ”**see note**|
+|[Vulnerability assessment](tvm-weaknesses.md)|Supported|Supported|
+|[Configuration assessment](tvm-microsoft-secure-score-devices.md)|Supported|Supported|
+|[Risk based prioritization](tvm-security-recommendation.md)|Supported|Supported|
+|[Remediation tracking](tvm-remediation.md)|Supported|Supported|
+|[Continuous monitoring](/defender-endpoint/configure-vulnerability-email-notifications)|Supported|Supported|
+|[Software inventory](tvm-software-inventory.md)|Supported|Supported|
+|[Software usages insights](tvm-usage-insights.md)|Supported|Supported|
+|[Security baselines assessment](tvm-security-baselines.md)|-|Supported|
+|[Block vulnerable applications](tvm-block-vuln-apps.md)|-|Supported|
+|[Browser extensions assessment](tvm-browser-extensions.md)|-|Supported|
+|[Digital certificate assessment](tvm-certificate-inventory.md)|-|Supported|
+|[Network share analysis](tvm-network-share-assessment.md)|-|Supported|
+|[Hardware and firmware assessment](tvm-hardware-and-firmware.md)|-|Supported|
+|[Authenticated scan for Windows](windows-authenticated-scan.md)|-|Supported**see note**|
 
 > [!NOTE]
 > The Windows authenticated scan feature will be deprecated by the end of November 2025 and won't be supported beyond that date. For more information about this change, see the [Windows authenticated scan deprecation FAQs](defender-vulnerability-management-faq.md#windows-authenticated-scan-deprecation-faqs).
diff --git a/defender-vulnerability-management/trial-user-guide-defender-vulnerability-management.md b/defender-vulnerability-management/trial-user-guide-defender-vulnerability-management.md
@@ -42,10 +42,6 @@ Microsoft Defender Vulnerability Management delivers asset visibility, continuou
 
 :::image type="content" source="/defender/media/defender-vulnerability-management/mdvm-asset.png" alt-text="Screenshot of Microsoft Defender Vulnerability Management features and capabilities.":::
 
-Watch the following video to learn more about Defender Vulnerability Management:
-
-> [!VIDEO https://learn-video.azurefd.net/vod/player?id=4ee839c5-4ccb-4cc9-9945-ae8228e35121]
-
 ## Let's get started
 
 ### Step 1: Set up
diff --git a/defender-vulnerability-management/tvm-software-inventory.md b/defender-vulnerability-management/tvm-software-inventory.md
@@ -49,7 +49,7 @@ In the [Microsoft Defender portal](https://security.microsoft.com), in the navig
 
 The **Software inventory** lists software installed in your network, including the vendor name, weaknesses found, threats associated with them, exposed devices, impact to exposure score, and tags. The data is updated every three to four hours. There's currently no way to force a sync.
 
-:::image type="content" alt-text="Example of the landing page for software inventory." source="/defender/media/defender-vulnerability-management/tvm-sw-inventory-main-small.png" lightbox="/defender/media/defender-vulnerability-management/tvm-sw-inventory-main.png":::
+:::image type="content" alt-text="Example of the landing page for software inventory." source="/defender/media/defender-vulnerability-management/tvm-sw-inventory-main.png":::
 
 You can filter the list view based on product code (CPE), OS platform, weaknesses found in the software, threats associated with them, and tags like whether the software has reached end-of-support.
 
diff --git a/defender/media/defender-vulnerability-management/tvm-sw-inventory-main.png b/defender/media/defender-vulnerability-management/tvm-sw-inventory-main.png
diff --git a/exposure-management/whats-new.md b/exposure-management/whats-new.md
@@ -26,10 +26,12 @@ Learn more about MSEM by reading the [Microsoft Security and Compliance blog](ht
 
 ## November 2025
 
-### Integration of Microsoft Defender for Cloud’s CSPM capabilities and Microsoft Defender Vulnerability Management and into Exposure Management
+### Integration of Microsoft Defender for Cloud’s CSPM capabilities and Microsoft Defender Vulnerability Management into Exposure Management
 
 This major milestone brings comprehensive Microsoft Defender for Cloud’s posture capabilities (secure score, recommendations, and attack paths) and vulnerability management integration to Microsoft Security Exposure Management, which significantly expands the scope and capabilities of the platform.
 
+**Unified portal experience** – All exposure management and vulnerability management functions are now accessible in the Microsoft Defender portal at security.microsoft.com under the Exposure Management section.
+
 #### New unified recommendations catalog
 
 **One place, full coverage** – You can now explore all Microsoft security recommendations in a single, streamlined experience that consolidates recommendations from:
@@ -58,11 +60,11 @@ This major milestone brings comprehensive Microsoft Defender for Cloud’s postu
 
 #### Devices misconfigurations and vulnerabilities
 
-**Separated workflows** – For the first time, misconfigurations recommendations are separated from vulnerabilities, recognizing they represent distinct workflows handled by different personas.
+**Separated workflows** – For the first time, misconfiguration recommendations are separated from vulnerabilities, recognizing they represent distinct workflows handled by different personas.
 
-- **Devices Misconfigurations**: Configuration issues from Vulnerability Management, Microsoft Secure Score, and Security Exposure Management, contributing to Devices Secure Score
+- **Devices Misconfigurations**: Configuration issues from Vulnerability Management, Microsoft Secure Score, and Security Exposure Management, contributing to Devices Secure Score.
 
-- **Devices Vulnerabilities**: Software vulnerabilities from Vulnerability Management with the same exposure score and prioritization logic customers know, preserving familiar structure and workflows
+- **Devices Vulnerabilities**: Software vulnerabilities from Vulnerability Management with the same exposure score and prioritization logic customers know, preserving familiar structure and workflows.
 
 #### Cloud Resources with risk-based prioritization
 
@@ -102,10 +104,6 @@ This major milestone brings comprehensive Microsoft Defender for Cloud’s postu
 
 Learn more about the [integration with Microsoft Vulnerability Management](vulnerability-management-integration.md) and the specific [changes to the Microsoft Vulnerability Management experience](/defender-vulnerability-management/whats-new-in-microsoft-defender-vulnerability-management#microsoft-defender-vulnerability-management-and-microsoft-security-exposure-management-integration).
 
-#### Portal and navigation updates
-
-**Unified portal experience** – All exposure management and vulnerability management functions are now accessible in the Microsoft Defender portal at security.microsoft.com under the Exposure Management section.
-
 #### Expanded Critical Asset Management
 
 **Comprehensive coverage** – Critical asset management now covers the unified inventory spanning endpoints, cloud resources, and external assets discovered through third-party integrations.
