Process – [CE A6.5] Exporting a list of Missing HIGH/CRITICAL Patches for Software
- Go to Microsoft Defender Admin Portal – security.microsoft.com
- Click on Hunting
- Click on Advanced Hunting
- Paste in the following KQL query:
- DeviceTvmSoftwareVulnerabilities
| where OSPlatform == "Windows10"
| where VulnerabilitySeverityLevel in ("Critical", "High")
| summarize AffectedDevices = dcount(DeviceName), DeviceList = make_set(DeviceName) by SoftwareVendor, SoftwareName, SoftwareVersion
| project SoftwareVendor, SoftwareName, SoftwareVersion, AffectedDevices, DeviceList
- Click on Run
- Click on Export to export to a .CSV
