14 DAY FREE TRIAL

No Search Results

No Search Results

14 DAY FREE TRIAL
  1. Help Center
  2. Patches and Updates
  3. General

Category filter

View available patches and patch details

Jump To

The Patches tab in Hexnode UEM displays all patches and updates for operating systems and applications across enrolled devices. It provides detailed information about each patch, including severity, classification, and more details. IT admins can assess the stability of these updates and approve them for automation if deemed suitable. By viewing available patches, admins can easily track, prioritize, and manage updates based on their importance.

How to view available patches in Hexnode UEM

The Available Patches section displays all patches retrieved by the Hexnode portal. To access the available patches, follow these steps:

  1. Login to your Hexnode UEM portal.
  2. Got to the Patches and Updates tab.
  3. Select Available Patches.

The following section outlines the various categories of patches.

Applicable Patches

These are patches that are relevant and necessary for a particular system or application. A patch is considered applicable if it matches the operating system and configuration of the enrolled device. Applicable patches may already be installed or might still need to be installed on the devices.

    Applicable Critical Patches

    A list of applicable patches with a severity level Critical for the enrolled devices.

    Missing Patches

    List of applicable patches that have not yet been installed on enrolled devices.

Approval Pending Patches

List of all patches awaiting administrator approval; these can be deployed to devices via automation once the admin has approved them.

Patches section listing all available patches and updates along with detailed information for each update

The Patches section provides IT admins with detailed information about patches and updates for enrolled devices. Each entry includes key details such as the update name, affected and installed devices, severity level, release date, and classification. To better organize the information, admins can customize the table by clicking the icon on the left side of the search bar and selecting additional columns from the available options. The table below outlines the details provided for each patch and update.

Detail Description
Name Specifies the name of the update or patch, such as the version and identifier of the update.
Affected Devices Lists all the devices that need to have the particular patch or update installed.
Installed Devices Shows the devices where the patch or update has already been successfully installed.
Description Provides a summary of the patch or update, including its purpose, the issues it resolves, and any improvements it brings.
Product Specifies the software, application, or OS component that the patch or update applies to. For example, it could refer to Windows OS, macOS, Microsoft Office, Adobe applications, or third-party software.
Platform Indicates the operating system to which the update is applicable. This could include Windows, macOS, or other supported platforms.
Severity Highlights the criticality of the update, categorized into levels such as Critical, Important, Moderate, or Low.
Release Date Displays the date when the patch or update was officially released by the vendor.
KB Number Displays the Knowledge Base (KB) reference number associated with the update. These KB numbers are unique identifiers provided by vendors like Microsoft to document specific updates and fixes.
CVE Lists the Common Vulnerabilities and Exposures (CVE) identifier if the update addresses security vulnerabilities.
Update Classification Indicates the type of update based on the platform. For Windows (Microsoft), classifications include Critical Updates, Definition Updates, Feature Packs, Security Updates, Service Packs, Tools, Update Rollups, Updates, and Upgrades. For macOS (Apple), classifications include Rapid Security Responses, Major Updates, Minor Updates, Firmware Updates, and Config Data Updates.
Approval Status Indicates whether the update has been approved for installation. (Pending Approval, Approved).
Identifier Provides a unique identifier for the update, which can be used for tracking or reference purposes.
Type Indicates whether the update is for the OS or an application.
Vendor Specifies the vendor that released the update, such as Microsoft, Apple, or a third-party application developer.
Max Download Size Shows the maximum size of the update or patch, helping admins prepare for network bandwidth considerations.
More Info URL Provides a URL linking to a webpage with additional details or documentation related to the patch or update if there are any.
Support URL Links to the vendor’s support page for troubleshooting, FAQs, or assistance regarding the update.

You can filter the patches using the following options:

  • Filter By:
    • Product: Search by product.

      Note:


      macOS versions below 11 are collectively categorized as macOS. Versions 11 and above are classified by their respective OS names: macOS 11 – Big Sur, macOS 12 – Monterey, macOS 13 – Ventura, macOS 14 – Sonoma, and macOS 15 – Sequoia. This allows you to search for products using their corresponding OS names.

    • Platform: Choose between Windows or macOS.
    • Severity: Select from Moderate, NA, Critical, Important, Low.
    • Update Classification: Filter by the type of update based on the platform.
    • Type: Filter by App or OS.
    • Approval Status: Use this filter to view updates based on their status – either Approved or Pending.
  • Release Date:
    • All
    • Today
    • Yesterday
    • Last 7 days
    • Last 30 days

Details of a patch or update

When you click on a particular update, Hexnode UEM provides an overall summary of that patch or update. The summary includes whether the update has been included in any automation, details of devices that have been patched or updated, devices that remain unpatched, and devices that are awaiting a reboot for the update to be fully applied. To check the details or summary of the update,

  1. Navigate to the Patches and Updates tab in Hexnode UEM.
  2. Go to the Patches section.
  3. Click on the patch or update.

Below are the details available for the patch or update,

Category Description
Automations Provides details about the automation action associated with the patch or update.
Patched Devices Lists devices that have successfully installed the patch or update.
Unpatched Devices Lists devices that have not yet installed the patch or update.
Devices Waiting for Reboot Displays devices that need to restart to complete the installation of the update.

Authorizing patches and updates

The process of authorizing patches and updates begins when the IT admin reviews all the patches and updates listed under the Patches section in the Patches and Updates tab in Hexnode UEM. If the admin deems a patch or update suitable, they can approve it for patch automation on the enrolled devices. However, if the Require update approval option is enabled during the configuration of patch automation, the IT admin must approve updates after the configuration is deployed on the device.
If this option is not enabled, all available updates are installed automatically as configured in the patch automation.

To approve all the updates in bulk or individually,

  1. Login to your Hexnode UEM portal.
  2. Go to the Patches and Updates tab.
  3. Navigate to Patches.
  4. Select all the updates that need to be approved. Click on Actions and select Approve.

    OR

    Click on the patch and update where you will be redirected to the summary page. From the summary page, click on Approve.

  5. Click on Proceed to approve.

Revoking approval for a patch or update prevents it from being deployed to devices in the future. If the “Require update approval” option is enabled in patch automation, the update will no longer be deployed to devices that haven’t received it yet after the approval is revoked. However, this action does not affect devices that have already installed the patch.

To revoke a patch or update:

  1. Navigate to the Patches and Updates tab in Hexnode UEM.
  2. Go to the Patches section.
  3. Select or click on the patch or update you want to revoke.
  4. Click on the Actions button and select Revoke Approval.
  5. Click on Proceed to revoke the approval.

Vulnerabilities

Vulnerabilities are security weaknesses that can be exploited if left unpatched. This section offers a detailed view of all reported vulnerabilities. To access this information, follow these steps:

  1. Login to your Hexnode UEM portal.
  2. Go to the Patches and Updates tab.
  3. Navigate to Vulnerabilities.

The Vulnerabilities section is divided into three subcategories:

  1. All vulnerabilities: Displays every vulnerability synced with the Hexnode portal.
  2. Applicable vulnerabilities: Displays only those vulnerabilities that affect the enrolled devices.
  3. Vulnerable devices: Displays all devices that are vulnerable along with the list of vulnerabilities.

Overview of all identified vulnerabilities

You can also filter vulnerabilities by CVSS (Common Vulnerability Scoring System) rating: None, Low, Medium, High, or Critical, allowing you to prioritize them based on severity.

Need more help?
Raise a Ticket Raise a Ticket
Ask Community Ask Community
Chat With us Chat With us
  • Patches and Updates