Cytomic Patch module lists

Accessing the lists

There are two ways to access the lists:

  • From the top menu, select Status. From the side menu, select Cytomic Patch. Click the relevant widget.

    Or,

  • From the top menu, select Status. From the side menu, click the Add link. A window opens that shows the available lists.

  • From the Patch management section, select a list to view the associated template. Edit it and click Save. The list is added to the side menu.

You can access the patch installation and uninstallation lists from the Last patch installation tasks widget by clicking View installation history.

You can access the Patch installation/uninstallation task results and View installed/uninstalled patches lists from the top menu Tasks by clicking View results in a patch installation or uninstallation task.

Required permissions

Permissions Access to lists

No permissions

  • Patch management status.

Install, uninstall, and exclude patches

Access to lists and context menus to install and uninstall patches:

  • Available patches.

  • Installation history.

  • End-of-Life programs.

  • Excluded patches.

  • Patch installation/uninstallation task results.

  • View installed/uninstalled patches.

View available patches

Read-only access to lists:

  • Available patches.

  • Installation history.

  • End-of-Life programs.

  • Excluded patches.

  • Patch installation/uninstallation task results.

  • View installed/uninstalled patches.

  • Available patches trend.

  • Most available patches for computers.

  • Computers with most available patches.

  • Programs with most available patches.

Permissions required to access the Patch Management lists

Patch management status

This list shows all computers on the network that are compatible with Cytomic Patch (with filters that enable you to identify workstations and servers that are not using the service due to the reasons shown in the associated panel).

Field Comment Values

Computer

Computer name.

Character string

Computer status

Agent reinstallation:

  • Reinstalling the agent.

  • Agent reinstallation error.

Protection reinstallation:

  • Reinstalling the protection.

  • Protection reinstallation error.

  • Pending restart.

Computer isolation status:

  • Computer in the process of being isolated.

  • Isolated computer.

  • Computer in the process of stopping being isolated.

“RDP attack containment” mode:

  • Computer in “RDP attack containment” mode.

  • Ending "RDP attack containment" mode.

Patch installation

  • Do not install patches

  • Designate as test computers and install patches

Icon

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Patch management

Module status.

  • Enabled

  • Disabled

  • Installation error (failure reason)

  • No license

  • No information

  • Error

Last checked

Date when Cytomic Patch last queried the cloud to check whether new patches had been published.

Date

Last connection

Date when the Advanced EDR status was last sent to the Cytomic cloud.

Date

Fields in the Patch Management Status list

Fields displayed in the exported file
Field Comment Values

Client

Customer account the service belongs to.

Character string

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Computer

Computer name.

Character string

IP address

The computer primary IP address.

Character string

Domain

Domain the computer belongs to.

Character string

Description

 

Character string

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Patch installation

Patch installation option applied to the computer:

  • Patch installation enabled: The computer has Cytomic Patch enabled. Cytomic Patch installs patches on the computer.

  • Test computer for patch installation: The computer has Cytomic Patch enabled and is designated as a test computer for patch installation.

  • Patch installation disabled: The computer has Cytomic Patch disabled. Cytomic Patch does not install patches on the computer.

Enumeration

Agent version

 

Character string

Installation date

Date when the Cytomic Patch module was successfully installed on the computer.

Date

Last connection date

Date when the agent last connected to the Cytomic cloud.

Date

Platform

Operating system installed on the computer.

  • Windows

  • Linux

  • macOS

Operating system

Operating system installed on the computer, internal version, and patch status.

Character string

Updated protection

Indicates whether the protection module installed on the computer is updated to the latest version or not.

Boolean

Protection version

Internal version of the protection module.

Character string

Last update on

Date the signature file was last updated.

Date

Patch management status.

Module status.

  • Enabled

  • Disabled

  • Error installing

  • No license

  • No information

  • Error

Requires restart

The computer requires a reboot to finish installing or uninstalling one or more downloaded patches.

Boolean

Last checked

Date when Cytomic Patch last queried the cloud to check whether new patches had been published.

Date

Isolation status

Indicates whether the computer is isolated or can communicate normally with other computers on the network.

  • Isolated

  • Not isolated

Installation error date

Date of the unsuccessful attempt to install Cytomic Patch.

Date

Installation error

Reason for the installation error.

  • Download error

  • Execution error

Fields in the Patch Management Status exported file

Filter tool
Field Comment Values

Platform

Operating system installed on the computer.

  • All

  • Windows

  • Linux

  • macOS

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Last checked

Date when Cytomic Patch last queried the cloud to check whether new patches had been published.

  • All

  • More than 3 days ago

  • More than 7 days ago

  • More than 30 days ago

Last connection

Date when the agent last connected to the Cytomic cloud.

Date

Pending restart to complete patch installation or uninstallation

The computer requires a reboot to finish installing or uninstalling one or more patches.

Boolean

Patch installation

Patch installation option.

  • Patch installation enabled

  • Test computer for patch installation

  • Patch installation disabled

Patch management status.

Module status.

  • Enabled

  • Disabled

  • Error

  • Error installing

  • No license

  • No information

Filters available in the Patch Management Status list

Computer details page

Click a row in the list to open the computer details page. For more information, see Computer details.

Available patches

This list shows all missing patches on the network computers and information about patches in the process of installation. Each line in the list corresponds to a patch/computer pair.

Field Comment Values

Computer

Name of the computer with outdated software and patch installation option assigned to the computer in the Cytomic Patch settings:

  • Do not install patches

  • Designate as test computers and install patches

Character string

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Program

Name of the out-of-date program or operating system version with missing patches.

Character string

Version

Version number of the outdated program.

Numeric value

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

Release date

Date when the patch was released for download and application.

Date

Criticality

Update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Installation

Indicates the patch installation status:

  • Pending: The patch is available for the computer but has not been installed yet.

  • Requires manual download: The patch must be manually downloaded and copied to a cache computer by the administrator. For more information, see Download patches manually.

  • Pending (manually downloaded): The patch was downloaded manually and is already included in the patch repository. For more information, see Download patches manually.

  • Pending restart: The patch was installed but the computer was not restarted. Some patches might not be applied until the computer is restarted.

Enumeration

Context menu

Shows an action menu:

  • Install: Create a quick task to immediately install the patch on the computer.

  • Schedule installation: Create a scheduled task to install the patch on the computer.

  • Exclude: Select the computers for which you want to exclude the patch.

  • Isolate computer: Isolate the computer from the network. Not available for Linux computers.

  • View all available patches for the computer: Shows all available patches for the computer that have not been installed yet.

  • View which computers have the patch available: Shows all computers that have the patch available for installation.

Enumeration

Fields in the Available Patches list

Fields displayed in the exported file

Use the context menu to export the data. The export file can include all data in the list of available patches or a smaller version that shows the trend of the number of available patches in the last 7 days, the last month, or the last year.

Context menu for data export

Field Comment Values

Client

Customer account the service belongs to.

Character string

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Computer

Name of the computer with outdated software.

Character string

IP address

The computer primary IP address.

Character string

Domain

Domain the computer belongs to.

Character string

Description

 

Character string

Operating system

Operating system installed on the computer, internal version, and patch status.

Character string

Platform

Operating system installed on the computer.

  • Windows

  • Linux

  • macOS

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Patch installation

Patch installation option applied to the computer.

  • Patch installation enabled

  • Test computer for patch installation

  • Patch installation disabled

Vendor

The company that created the outdated program.

Character string

Product family

Name of the product with patches pending installation or a reboot.

Character string

Program version

Version number of the outdated program.

Numeric value

Program

Name of the outdated program or operating system version with missing patches.

Character string

Version

Version number of the outdated program.

Numeric value

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

Criticality

Update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

CVEs (Common Vulnerabilities and Exposures)

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

KB ID

ID of the Microsoft Knowledge Base article that describes the vulnerability fixed by the patch and the patch requirements (if any).

Character string

Release date

Date when the patch was released for download and application.

Date

Last seen

Date when the computer was last discovered.

Date

Is downloadable

Indicates whether the patch is available for download or requires an additional support contract with the software vendor to access it.

Boolean

Download size (KB)

Patch size in compressed format. Applying the patch or update might require more space on the target computer storage media than indicated in this field.

Numeric value

Status

Indicates the patch installation status:

  • Pending: The patch is available for the computer but has not been installed yet.

  • Pending (manually downloaded): The patch was downloaded manually and is already included in the patch repository. For more information, see Download patches manually.

  • Requires manual download: The patch must be manually downloaded and copied to a cache computer by the administrator. For more information, see Download patches manually.

Enumeration

File name

Name of the file that contains the patch.

Character string

Download URL

HTTP resource in the software vendor infrastructure to download the patch.

Character string

Fields in the Available Patches exported file

Filter tool
Field Comment Values

Platform

Operating system installed on the computer.

  • All

  • Windows

  • Linux

  • macOS

Patch release

Date when the patch was released and made available for download.

  • All

  • Less than 7 days ago

  • Less than 14 days ago

  • Less than 1 month ago

  • Less than 2 months ago

  • More than 7 days ago

  • More than 14 days ago

  • More than 1 month ago

  • More than 2 months ago

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Patch type

Type of patch.

  • App patches

  • Operating system patches

Search computer

Computer name.

Character string

Computer

Name of the computer with outdated software.

Character string

Program

Name of the outdated program or operating system version with missing patches.

Character string

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

CVE

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

Program, family, or vendor

The search applies to the selected program, product family, or company.

Character string

Patch installation

Patch installation option.

  • Patch installation enabled

  • Test computer for patch installation

  • Patch installation disabled

Criticality

Indicates the update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Installation

Shows patches that are in the process of installation, filtering them by the installation stage they are in.

  • Pending

  • Requires manual download

  • Pending (manually downloaded)

  • Pending restart

Show non-downloadable patches

Shows patches that cannot be directly downloaded by Cytomic Patch because there are additional requirements set by the vendor (EULA acceptance, login credentials, captcha, etc.).

Boolean

Filters available in the Available Patches list

Detected patch page

Click a row in the list. The Detected patch page opens and shows details of the patch. This data might vary depending on the operating system installed on the computer.

This page can provide this content:

  • Information about the available patch and the Install patch button.

  • Information about the patch in the process of installation. The text Pending restart appears next to the Install patch button.

Click the Install patch button. A dialog box opens for you to select the recipients of the patch installation task:

  • Install on the current computer only: The task is performed on the computer selected in the list.

  • Install on all computers in the selected filter: Select a filter from the filter tree shown. The patch is installed on all computers in the selected filter.

  • Install on all computers: The patch is installed on all computers on the network.

Field Comment Values

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

Program

Name of the outdated program or operating system version with missing patches.

Character string

Program version

Version number of the outdated program.

Character string

Family

Name of the product with patches pending installation or a reboot.

Character string

Vendor

The company that created the outdated program.

Character string

Criticality

Indicates the update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

CVEs (Common Vulnerabilities and Exposures)

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

Computer

Name of the computer with outdated software.

Character string

Installation status

Indicates whether the patch is already included in the repository that contains the patches to be applied to computers or must be manually downloaded and added to the patch repository by the administrator.

  • Pending

  • Requires manual download

  • Pending (manually downloaded)

  • Pending restart

Release date

Date when the patch was released for download and application.

Date

Download size

Patch size in compressed format. Applying the patch or update might require more space on the target computer storage media than indicated in this field.

Numeric value

KB ID

ID of the Microsoft Knowledge Base article that describes the vulnerability fixed by the patch and the patch requirements (if any).

Character string

Download URL

URL for downloading the patch individually.

Character string

File name

Name of the file that contains the patch.

Character string

Description

Information about the impact the vulnerability could have on computers.

Character string

Fields on the Detected Patch page

Available patches by computers

This list shows available patches and the number of computers each patch is available for.

Field Comment Values

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

Program

Name of the outdated program or operating system version with missing patches.

Character string

Version

Version number of the outdated program.

Numeric value

Release date

Date when the patch was released for download and application.

Date

Criticality

Update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Computers

Number of computers the patch is available for.

Numeric value

Context menu

View which computers have the patch available: Shows all computers that have the patch available for installation.

 

Fields in the Available Patches by Computers list

Fields displayed in the exported file

Use the context menu to export the data. The export file can include all data in the list of available patches or a smaller version that shows the trend of the number of available patches in the last 7 days, the last month, or the last year.

Context menu for data export

Field Comment Values

Vendor

The company that created the outdated program.

Character string

Product family

Name of the product with patches pending installation or a reboot.

Character string

Program version

Version number of the outdated program.

Numeric value

Program

Name of the out-of-date program or operating system version with missing patches.

Character string

Version

Version number of the outdated program.

Numeric value

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

Criticality

Update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

CVEs (Common Vulnerabilities and Exposures)

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

KB ID

ID of the Microsoft Knowledge Base article that describes the vulnerability fixed by the patch and the patch requirements (if any).

Character string

Release date

Date when the patch was released for download and application.

Date

Computers

Number of computers the patch is available for.

Numeric value

Platform

Operating system installed on the computer.

  • Windows

  • macOS

  • Linux

Fields in the Available Patches by Computers exported file

Filter tool
Field Comment Values

Platform

Operating system installed on the computer.

  • All

  • Windows

  • Linux

  • macOS

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Patch type

Type of patch.

  • App patches

  • Operating system patches

Search computer

Computer name.

Character string

Program

Name of the out-of-date program or operating system version with missing patches.

Character string

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

CVE

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

Select a program version, family, or vendor

The search applies to the selected program, product family, or company.

Character string

Criticality

Indicates the update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Show non-downloadable patches

Shows patches that cannot be directly downloaded by Cytomic Patch because there are additional requirements set by the vendor (EULA acceptance, login credentials, captcha, etc.).

Boolean

Filters available in the Available Patches by Computers list

Detected patch page

Click a row in the list. The Detected patch page opens and shows details of the patch. This data might vary depending on the operating system installed on the computer. See Detected patch page.

Installation history

This list shows the operations performed by Cytomic Patch on the computers on the network in the specified time period.

Field Comment Values

Date

Date the operation was logged.

Date

Computer

Computer name.

Character string

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Program

Program name or operating system version.

Character string

Version

Program or operating system version.

Character string

Patch

Patch name.

Character string

Criticality

Severity rating of the patch.

  • Other patches

  • Critical

  • Important

  • Moderate

  • Low

  • Unspecified

  • Service Pack

Installation

Status of the logged operation.

  • Installed

  • Requires restart

  • The patch is no longer required

  • Uninstalled (requires restart)

  • Error

Context menu

Shows a drop-down menu with options.

  • View task: Shows the settings of the task associated with the logged operation.

  • View patches installed on the computer: Shows all patches installed on the selected computer.

  • View computers with the patch installed: Shows all computers that have the selected patch installed.

Fields in the Installation History list

Fields displayed in the exported file

Use the context menu to export the data. You can download a detailed file that includes all data in the list or a reduced version. In either case, the file contains information about the patches installed in the selected time period.

Field Comment Values

Client

Customer account the service belongs to.

Character string

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Computer

Computer name.

Character string

IP address

The computer primary IP address.

Character string

Domain

Domain the computer belongs to.

Character string

Description

 

Character string

Platform

Operating system installed on the computer.

  • Windows

  • Linux

  • macOS

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Date

Date of the logged operation.

Date

Program

Program name or operating system version.

Character string

Version

Program or operating system version.

Character string

Patch

Name of the installed patch.

Character string

Criticality

Severity rating of the patch.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

CVEs (Common Vulnerabilities and Exposures)

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

KB ID

ID of the Microsoft Knowledge Base article that describes the vulnerability fixed by the patch and the patch requirements (if any).

Character string

Release date

Date when the patch was released for download and application.

Date

Installation

Indicates whether the patch is already included in the repository that contains the patches to be applied to computers or must be manually downloaded and added to the patch repository by the administrator.

  • Installed

  • Requires restart

  • Error

  • The patch is no longer required

  • Uninstalled

Installation error

The Cytomic Patch module did not install correctly.

  • Unable to download: Installer not available

  • Unable to download: The file is corrupted

  • Not enough disk space

  • Installation error

  • Download error

Download URL

URL for downloading the patch individually.

Character string

Result code

Operation result code. See the vendor documentation for information about result codes.

Numeric value

Task name

Name of the patch installation task. This column appears only in the extended export.

Character string

Task launch date

Date when the Cytomic Patch task associated with the computer was scheduled to run. This column appears only in the extended export.

Date

Task start date

Date when the Cytomic Patch task associated with the computer started to run. This column appears only in the extended export.

Date

Task end date

Date when the Cytomic Patch task associated with the computer finished to run. This column appears only in the extended export.

Date

Fields in the Installation History exported file

Filter tool
Field Comment Values

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Search computer

Computer name.

Character string

Date

Time period in which the patches were installed.

  • Last 24 hours

  • Last 7 days

  • Last month

  • Custom range

Platform

Operating system installed on the computer.

  • All

  • Windows

  • Linux

  • macOS

Criticality

Severity rating of the patch.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Installation

Status of the logged operation.

  • Installed

  • Requires restart

  • The patch is no longer required

  • Uninstalled (requires restart)

  • Error

  • Download error

  • Installation error

Program

Program name or operating system version.

Character string

Patch

Name of the installed patch.

Character string

Installation Attempts

Shows all failed patch installation attempts or only the latest attempt.

  • Show only the latest attempt

  • Show all attempts

CVE

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

Filters available in the Installation History list

Installed patch page

Click a row in the list. The Installed patch page opens and shows details of the logged operation. This data might vary depending on the operating system installed on the computer.

Field Comment Values

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

Program

Name of the out-of-date program or operating system version.

Character string

Criticality

Indicates the update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

CVEs

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

Computer

Computer name.

Character string

Installation date

Date the operation was logged.

Date

Result

Status of the logged operation.

  • Installed

  • Requires restart

  • Error

  • The patch is no longer required

  • Uninstalled

  • Installation error

  • Download error

Release date

Date when the patch was released for download and application.

Date

Download size

Patch size in compressed format. Applying the patch or update might require more space on the target computer storage media than indicated in this field.

Numeric value

KB ID

ID of the Microsoft Knowledge Base article that describes the vulnerability fixed by the patch and the patch requirements (if any).

Character string

Description

Notes provided by the software vendor about the effects of applying the patch, special conditions, and resolved vulnerabilities.

Character string

Fields on the Installed Patch page

End-of-Life programs

This list shows programs that are no longer supported by the relevant vendor. These programs are particularly vulnerable to malware and other security threats.

Field Comment Values

Computer

Name of the computer with EOL software.

Character string

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Program

EOL program name.

Character string

Version

EOL program version.

Character string

EOL

Date when the program reached its end of life.

Date (in red if the program reached its end of life)

Fields in the End-of-Life Programs list

Fields displayed in the exported file
Field Comment Values

Client

Customer account the service belongs to.

Character string

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Computer

Computer name.

Character string

Platform

Operating system installed on the computer.

  • Windows

  • Linux

  • macOS

IP address

The computer primary IP address.

Character string

Domain

Domain the computer belongs to.

Character string

Description

 

Character string

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Program

EOL program name.

Character string

Version

EOL program version.

Character string

EOL

Date when the program reached its end of life.

Date

Last seen

Date when the computer was last discovered.

Date

Fields in the End-of-Life Programs exported file

Filter tool
Field Comment Values

Search computer

Computer name.

Character string

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Platform

Operating system installed on the computer.

  • All

  • Windows

  • Linux

  • macOS

End-of-Life date

Date when the program will reach its EOL.

  • All

  • Currently in End of Life

  • In End of Life (currently or in 1 year)

Filters available in the End-of-Life Programs list

Program details page

Click a row in the list. The Program details page opens.

Field Comment Values

Program

Name of the program or operating system version that received the patch.

Character string

Family

Bundle, suite, or program group the software belongs to.

Character string

Publisher/Company

Company that designed or published the program.

Character string

Version

Program version.

Character string

EOL

Date when the program reached its end of life.

Date

Fields on the Program Details page

Excluded patches

This list shows patches that you marked as excluded, preventing them from being installed on the computers on the organization network. The list shows a line for each computer-excluded patch pair, except for patches excluded for all computers on the network, for which a single line appears.

Field Comment Values

Computer

The content of this field varies depending on the target of the exclusion:

If the patch was excluded for a single computer, the field shows the computer name.

If the patch was excluded for all computers in the account, the text "(All)" is shown.

Character string

Group

Folder in the Advanced EDR group tree that the computer belongs to.

Character string

Program

Name of the program the excluded patch belongs to.

Character string

Version

Version of the program the excluded patch belongs to.

Character string

Patch

Name of the excluded patch.

Character string

Criticality

Severity rating of the patch.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Excluded by

Management console user account who excluded the patch.

Character string

Excluded since

Date the patch was excluded.

Character string

Fields in the Excluded Patches list

Fields displayed in the exported file
Field Comment Values

Client

Customer account the service belongs to.

Character string

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Computer

The content of this field varies depending on the target of the exclusion:

If the patch was excluded for a single computer, the field shows the computer name.

If the patch was excluded for all computers in the account, the text "(All)" is shown.

Character string

IP address

The computer primary IP address.

Character string

Domain

Domain the computer belongs to.

Character string

Description

The computer description assigned by the network administrator.

Character string

Platform

Operating system installed on the computer.

  • Windows

  • Linux

  • macOS

Group

Folder in the Advanced EDR folder tree that the computer belongs to.

Character string

Program

Name of the program the excluded patch belongs to.

Character string

Version

Version of the program the excluded patch belongs to.

Character string

Patch

Name of the excluded patch.

Character string

Criticality

Severity rating of the patch.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

CVEs (Common Vulnerabilities and Exposures)

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

KB ID

ID of the Microsoft Knowledge Base article that describes the vulnerability fixed by the patch and the patch requirements (if any).

Character string

Release date

Date when the patch was released for download and application.

Date

Download size (KB)

Patch size in compressed format. Applying the patch or update might require more space on the target computer storage media than indicated in this field.

Numeric value

Excluded by

Management console user account who excluded the patch.

Character string

Excluded since

Date the patch was excluded.

Character string

Fields in the Excluded Patches exported file

Filter tool
Field Comment Values

Platform

Operating system installed on the computer.

  • All

  • Windows

  • Linux

  • macOS

Computer type

Type of device.

  • Workstation

  • Laptop

  • Server

Computer

Name of the computer for which patches were excluded.

Character string

Program

Name of the program the excluded patch belongs to.

Character string

Patch

Name of the excluded patch.

Character string

Show non-downloadable patches

Shows patches that cannot be directly downloaded by Cytomic Patch because there are additional requirements set by the vendor (EULA acceptance, login credentials, captcha, etc.).

Boolean

CVEs

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

Criticality

Severity rating of the patch.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Filters available in the Excluded Patches list

Excluded patch page

Click a row in the list. The Excluded patch page opens and shows details of the patch excluded from installation tasks. This data might vary depending on the operating system installed on the computer.

Field Comment Values

Patch

Name of the patch or update and additional information (release date, Knowledge Base number, etc.).

Character string

Program

Name of the outdated program or operating system version with missing patches.

Character string

Criticality

Indicates the update severity rating and type.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

Service Pack

CVEs

CVE (Common Vulnerabilities and Exposures) ID that describes the vulnerability associated with the patch.

Character string

Computer

Name of the computer with outdated software.

Character string

Excluded by

Management console user account who excluded the patch.

Character string

Excluded since

Date and time the patch was excluded.

Numeric value

Release date

Date when the patch was released for download and application.

Date

KB ID

ID of the Microsoft Knowledge Base article that describes the vulnerability fixed by the patch and the patch requirements (if any).

Character string

Description

Notes provided by the software vendor about the effects of applying the patch, special conditions, and resolved vulnerabilities.

Character string

Fields on the Excluded Patch page

Patch installation/uninstallation task results

This list shows the results of the patch installation or uninstallation tasks performed on the computers on your network.

Field Description Values

Computer

Name of the computer the patch was installed/uninstalled from.

Character string

Group

Advanced EDR group the computer belongs to.

Character string

Status

Task status.

  • Pending

  • In progress

  • Finished

  • Failed

  • Canceled (the task could not start at the scheduled time)

  • Canceled

  • Canceling

  • Canceled (maximum run time exceeded)

Patches installed/uninstalled

Number of patches installed/uninstalled.

Character string.

Start date

Date the installation task started.

Date

End date

Date the installation task ended.

Date

Fields in the Installation/Uninstallation Task Results list

Filter tool
Field Description Values

Status

Installation/uninstallation task status.

  • Pending

  • In progress

  • Finished

  • Failed

  • Canceled (the task could not start at the scheduled time)

  • Canceled

  • Canceling

  • Canceled (maximum run time exceeded)

Applied/Uninstalled patches

Computers on which patches were installed/uninstalled.

  • All

  • No patches installed/uninstalled

  • With patches installed/uninstalled

Filters available in the Patch Installation/Uninstallation Task Results list

View installed/uninstalled patches

This list shows the patches installed/uninstalled from computers and other additional information.

Field Description Values

Computer

Name of the computer the patch was installed/uninstalled from.

Character string

Group

Advanced EDR group the computer belongs to.

Character string

Program

Patched program.

Character string

Version

Program version.

Character string

Patch

Installed/uninstalled patch.

Character string

Criticality

Severity rating of the installed/uninstalled patch.

  • Other patches (non-security related)

  • Critical (security-related)

  • Important (security-related)

  • Moderate (security-related)

  • Low (security-related)

  • Unspecified (security-related)

  • Service Pack

Result

Indicates whether the task was completed successfully or failed.

  • Installed

  • Requires restart

  • Error

  • The patch is no longer required

  • Uninstalled

Date

Date the task ran.

Date

Fields in the View Installed/Uninstalled Patches list