osquery vulnerability management #9302

ben-sec · 2022-12-06T16:19:11Z

ben-sec
Dec 6, 2022

Hi!

I run SO 2.3.190 and I thought I give the vulnerability management features of osquery and Fleet a chance. The Linux hosts of my distributed SO environment are full of (old) vulnerabilities (even though I run OS updates regularly) and for my test Windows clients I don't get any vulnerabilities and it does not find all of my siftware (e.g. MS Office products are missing (no, I did not set the disable_win_os_vulnerabilities option in the Fleet config). Any idea what I'm doing wrong? How reliable are these features of osquery and Fleet? Any experiences out there? Thanks in advance!

Cheers, Ben

Answered by defensivedepth

Dec 12, 2022

We still disable this by default for that reason - see here: #7643 (comment)

View full answer

defensivedepth · 2022-12-12T12:54:01Z

defensivedepth
Dec 12, 2022
Maintainer

We still disable this by default for that reason - see here: #7643 (comment)

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

osquery vulnerability management #9302

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

osquery vulnerability management #9302

Uh oh!

ben-sec Dec 6, 2022

Replies: 1 comment

Uh oh!

defensivedepth Dec 12, 2022 Maintainer

ben-sec
Dec 6, 2022

defensivedepth
Dec 12, 2022
Maintainer