Package Vulnerable Update

Requirements

  • Linux Control Center 2.10.X or higher

Overview

The Package Vulnerable Update action updates packages that were identified as vulnerable from a scan performed by the 7 Vulndb API of LCC or through integration with Tenable Security Center or Tenable Vulnerability Manager.

Objective

The purpose of this document is to demonstrate how to use the Package Vulnerable Update action in LCC.

Identifying Vulnerable Packages with 7 Vulndb API

In order for LCC to identify which package is vulnerable due to being outdated, it is necessary to run the 7 Vulndb API scan.

- Follow the step-by-step guide at the link below to run **7 Vulndb API**: -

Updating Vulnerable Packages

  1. In the left menu of LCC, click on Hosts.

  2. Select one or more hosts.

  3. Click the Actions button at the top of the page and execute the Package Vulnerable Update action.

  4. Confirm the action by clicking Yes.

  5. Open the host where the action was executed and click Actions History.

  6. Wait for the actions Package Vulnerable Update, Package Check Update, and Photography to reach the Processed status.

  7. With this action, some vulnerabilities that can be mitigated simply by updating packages will no longer pose a risk to your environment!

Based on this information, it is possible to implement some security measures such as:

  • Update the package

  • Proactive monitoring

  • Freeze the package version until the version issue is investigated

  • Vulnerability management

  • Backup and recovery

Although not limited to these, these measures aim to mitigate potential vulnerabilities and promote a safer environment.

Last updated